CVE-2025-12856

cna@vuldb.com

Details

CVSS v3: 4.7
CVSS v4: 2.0
CVSS v2: 5.8
NVD published: 2025-11-07 14:15:49
Affected versions: cpe:2.3:a:fabian:responsive_hotel_site:1.0:*:*:*:*:*:*:*
Summary: A weakness has been identified in code-projects Responsive Hotel Site 1.0. Impacted is an unknown function of the file /admin/reservation.php. This manipulation of the argument email causes sql injection. The attack can be initiated remotely. The exploit has been made available to the public and could be exploited.
Remediation: Not available in our cache.
Exploit info: https://github.com/AmengDream/CVE/blob/main/Responsive_Hotel_Site/reservation-sql-injection/report.md

TopVuln sends digest emails with high-risk CVE picks across multiple authoritative sources—curated with EPSS and AI. Choose daily per-stream emails and optional weekly or monthly roundups.

Subscribe — free email digest or paid plan

Information is aggregated from multiple authoritative sources for convenience; verify with NVD and vendors before operational decisions.