CVE-2025-12857

cna@vuldb.com

Details

CVSS v3: 4.7
CVSS v4: 2.0
CVSS v2: 5.8
NVD published: 2025-11-07 14:15:49
Affected versions: cpe:2.3:a:fabian:responsive_hotel_site:1.0:*:*:*:*:*:*:*
Summary: A security vulnerability has been detected in code-projects Responsive Hotel Site 1.0. The affected element is an unknown function of the file /admin/roombook.php. Such manipulation of the argument rid leads to sql injection. The attack can be launched remotely. The exploit has been disclosed publicly and may be used.
Remediation: Not available in our cache.
Exploit info: https://github.com/AmengDream/CVE/blob/main/Responsive_Hotel_Site/roombook-sql-injection/report.md

TopVuln sends digest emails with high-risk CVE picks across multiple authoritative sources—curated with EPSS and AI. Choose daily per-stream emails and optional weekly or monthly roundups.

Subscribe — free email digest or paid plan

Information is aggregated from multiple authoritative sources for convenience; verify with NVD and vendors before operational decisions.