AmengSec

3 exploits Active since Nov 2025
CVE-2025-12855 WRITEUP MEDIUM WRITEUP
Responsive Hotel Site 1.0 - SQL Injection
A security flaw has been discovered in code-projects Responsive Hotel Site 1.0. This issue affects some unknown processing of the file /admin/newsletterdel.php. The manipulation of the argument eid results in sql injection. It is possible to launch the attack remotely. The exploit has been released to the public and may be exploited.
CVSS 4.7
CVE-2025-12856 WRITEUP MEDIUM WRITEUP
Code-projects Responsive Hotel Site 1.0 - SQL Injection
A weakness has been identified in code-projects Responsive Hotel Site 1.0. Impacted is an unknown function of the file /admin/reservation.php. This manipulation of the argument email causes sql injection. The attack can be initiated remotely. The exploit has been made available to the public and could be exploited.
CVSS 4.7
CVE-2025-12857 WRITEUP MEDIUM WRITEUP
Responsive Hotel Site 1.0 - SQL Injection
A security vulnerability has been detected in code-projects Responsive Hotel Site 1.0. The affected element is an unknown function of the file /admin/roombook.php. Such manipulation of the argument rid leads to sql injection. The attack can be launched remotely. The exploit has been disclosed publicly and may be used.
CVSS 4.7