Digitaldruid Hoteldruid vulnerabilities
30 known vulnerabilities affecting digitaldruid/hoteldruid.
Total CVEs
30
CISA KEV
0
Public exploits
8
Exploited in wild
0
Severity breakdown
CRITICAL9HIGH6MEDIUM14LOW1
Vulnerabilities
Page 1 of 2
CVE-2022-22909P2HIGHCVSS 8.8PoCv3.0.32022-03-03
CVE-2022-22909 [HIGH] CWE-94 CVE-2022-22909: HotelDruid v3.0.3 was discovered to contain a remote code execution (RCE) vulnerability which is exp
HotelDruid v3.0.3 was discovered to contain a remote code execution (RCE) vulnerability which is exploited via an attacker inserting a crafted payload into the name field under the Create New Room module.
nvdosv
CVE-2021-42949P2CRITICALCVSS 9.8PoCv3.0.32022-09-16
CVE-2021-42949 [CRITICAL] CWE-287 CVE-2021-42949: The component controlla_login function in HotelDruid Hotel Management Software v3.0.3 generates a pr
The component controlla_login function in HotelDruid Hotel Management Software v3.0.3 generates a predictable session token, allowing attackers to bypass authentication via bruteforce attacks.
nvdosv
CVE-2023-43373P2CRITICALCVSS 9.8PoCv3.0.52023-09-20
CVE-2023-43373 [CRITICAL] CWE-89 CVE-2023-43373: Hoteldruid v3.0.5 was discovered to contain a SQL injection vulnerability via the n_utente_agg param
Hoteldruid v3.0.5 was discovered to contain a SQL injection vulnerability via the n_utente_agg parameter at /hoteldruid/interconnessioni.php.
nvd
CVE-2023-43374P2CRITICALCVSS 9.8PoCv3.0.52023-09-20
CVE-2023-43374 [CRITICAL] CWE-89 CVE-2023-43374: Hoteldruid v3.0.5 was discovered to contain a SQL injection vulnerability via the id_utente_log para
Hoteldruid v3.0.5 was discovered to contain a SQL injection vulnerability via the id_utente_log parameter at /hoteldruid/personalizza.php.
nvd
CVE-2019-8937P3MEDIUMCVSS 6.1PoCv2.3.02019-05-17
CVE-2019-8937 [MEDIUM] CWE-79 CVE-2019-8937: HotelDruid 2.3.0 has XSS affecting the nsextt, cambia1, mese_fine, origine, and anno parameters in c
HotelDruid 2.3.0 has XSS affecting the nsextt, cambia1, mese_fine, origine, and anno parameters in creaprezzi.php, tabella3.php, personalizza.php, and visualizza_tabelle.php.
nvdosv
CVE-2021-37833P3MEDIUMCVSS 6.1PoCv3.0.22021-08-03
CVE-2021-37833 [MEDIUM] CWE-79 CVE-2021-37833: A reflected cross-site scripting (XSS) vulnerability exists in multiple pages in version 3.0.2 of th
A reflected cross-site scripting (XSS) vulnerability exists in multiple pages in version 3.0.2 of the Hotel Druid application that allows for arbitrary execution of JavaScript commands.
nvdosv
CVE-2022-26564P3MEDIUMCVSS 6.1PoCv3.0.32022-04-26
CVE-2022-26564 [MEDIUM] CWE-79 CVE-2022-26564: HotelDruid Hotel Management Software v3.0.3 contains a cross-site scripting (XSS) vulnerability via
HotelDruid Hotel Management Software v3.0.3 contains a cross-site scripting (XSS) vulnerability via the prezzoperiodo4 parameter in creaprezzi.php.
nvdosv
CVE-2021-37832P3CRITICALCVSS 9.8v3.0.22021-08-03
CVE-2021-37832 [CRITICAL] CWE-89 CVE-2021-37832: A SQL injection vulnerability exists in version 3.0.2 of Hotel Druid when SQLite is being used as th
A SQL injection vulnerability exists in version 3.0.2 of Hotel Druid when SQLite is being used as the application database. A malicious attacker can issue SQL commands to the SQLite database through the vulnerable idappartamenti parameter.
nvdosv
CVE-2023-33817P3HIGHCVSS 8.8v3.0.52023-06-13
CVE-2023-33817 [HIGH] CWE-89 CVE-2023-33817: hoteldruid v3.0.5 was discovered to contain a SQL injection vulnerability.
hoteldruid v3.0.5 was discovered to contain a SQL injection vulnerability.
nvd
CVE-2023-34537P4MEDIUMCVSS 5.4PoCv3.0.52023-06-13
CVE-2023-34537 [MEDIUM] CWE-79 CVE-2023-34537: A Reflected XSS was discovered in HotelDruid version 3.0.5, an attacker can issue malicious code/com
A Reflected XSS was discovered in HotelDruid version 3.0.5, an attacker can issue malicious code/command on affected webpage's parameter to trick user on browser and/or exfiltrate data.
nvd
CVE-2019-9087P3CRITICALCVSS 9.8fixed in 2.3.12019-06-07
CVE-2019-9087 [CRITICAL] CWE-89 CVE-2019-9087: HotelDruid before v2.3.1 has SQL Injection via the /tab_tariffe.php numtariffa1 parameter.
HotelDruid before v2.3.1 has SQL Injection via the /tab_tariffe.php numtariffa1 parameter.
nvdosv
CVE-2019-9086P3CRITICALCVSS 9.8fixed in 2.3.12019-06-07
CVE-2019-9086 [CRITICAL] CWE-89 CVE-2019-9086: HotelDruid before v2.3.1 has SQL Injection via the /visualizza_tabelle.php anno parameter.
HotelDruid before v2.3.1 has SQL Injection via the /visualizza_tabelle.php anno parameter.
nvdosv
CVE-2018-1000871P3CRITICALCVSS 9.8≤ 2.3.02018-12-20
CVE-2018-1000871 [CRITICAL] CWE-89 CVE-2018-1000871: HotelDruid HotelDruid 2.3.0 version 2.3.0 and earlier contains a SQL Injection vulnerability in "id_
HotelDruid HotelDruid 2.3.0 version 2.3.0 and earlier contains a SQL Injection vulnerability in "id_utente_mod" parameter in gestione_utenti.php file that can result in An attacker can dump all the database records of backend webserver. This attack appear to be exploitable via the attack can be done by anyone via specially crafted sql query pas
nvdosv
CVE-2023-43371P3CRITICALCVSS 9.8v3.0.52023-09-20
CVE-2023-43371 [CRITICAL] CWE-89 CVE-2023-43371: Hoteldruid v3.0.5 was discovered to contain a SQL injection vulnerability via the numcaselle paramet
Hoteldruid v3.0.5 was discovered to contain a SQL injection vulnerability via the numcaselle parameter at /hoteldruid/creaprezzi.php.
nvd
CVE-2023-43375P3CRITICALCVSS 9.8v3.0.52023-09-20
CVE-2023-43375 [CRITICAL] CWE-89 CVE-2023-43375: Hoteldruid v3.0.5 was discovered to contain multiple SQL injection vulnerabilities at /hoteldruid/cl
Hoteldruid v3.0.5 was discovered to contain multiple SQL injection vulnerabilities at /hoteldruid/clienti.php via the annonascita, annoscaddoc, giornonascita, giornoscaddoc, lingua_cli, mesenascita, and mesescaddoc parameters.
nvd
CVE-2025-44203P3HIGHCVSS 7.5v3.0.0v3.0.72025-06-20
CVE-2025-44203 [HIGH] CWE-209 CVE-2025-44203: In HotelDruid 3.0.7, an unauthenticated attacker can exploit verbose SQL error messages on creadb.ph
In HotelDruid 3.0.7, an unauthenticated attacker can exploit verbose SQL error messages on creadb.php before the 'create database' button is pressed. By sending malformed POST requests to this endpoint, the attacker may obtain the administrator username, password hash, and salt. In some cases, the attack results in a Denial of Service (DoS), preventin
nvd
CVE-2024-23091P3HIGHCVSS 7.5fixed in 1.3.22024-07-30
CVE-2024-23091 [HIGH] CWE-916 CVE-2024-23091: Weak password hashing using MD5 in funzioni.php in HotelDruid before 1.32 allows an attacker to obta
Weak password hashing using MD5 in funzioni.php in HotelDruid before 1.32 allows an attacker to obtain plaintext passwords from hash values.
nvd
CVE-2025-25749P3HIGHCVSS 7.1≤ 3.0.72025-03-11
CVE-2025-25749 [HIGH] CWE-521 CVE-2025-25749: An issue in HotelDruid version 3.0.7 and earlier allows users to set weak passwords due to the lack
An issue in HotelDruid version 3.0.7 and earlier allows users to set weak passwords due to the lack of enforcement of password strength policies.
nvd
CVE-2025-25748P3HIGHCVSS 7.3v3.0.72025-03-11
CVE-2025-25748 [HIGH] CWE-352 CVE-2025-25748: A CSRF vulnerability in the gestione_utenti.php endpoint of HotelDruid 3.0.7 allows attackers to per
A CSRF vulnerability in the gestione_utenti.php endpoint of HotelDruid 3.0.7 allows attackers to perform unauthorized actions (e.g., modifying user passwords) on behalf of authenticated users by exploiting the lack of origin or referrer validation and the absence of CSRF tokens. NOTE: this is disputed because there is an id_sessione CSRF token.
nvd
CVE-2019-9085P4MEDIUMCVSS 6.5fixed in 2.3.12019-06-24
CVE-2019-9085 [MEDIUM] CWE-20 CVE-2019-9085: Hoteldruid before v2.3.1 allows remote authenticated users to cause a denial of service (invoice-cre
Hoteldruid before v2.3.1 allows remote authenticated users to cause a denial of service (invoice-creation outage) via the n_file parameter to visualizza_contratto.php with invalid arguments (any non-numeric value), as demonstrated by the anno=2019&id_transazione=1&numero_contratto=1&n_file=a query string to visualizza_contratto.php.
nvdosv
1 / 2Next →