dhammon/HotelDruid-CVE-2021-42948

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2021-42948 ↗	Sep 16, 2022Friday, 16 September 2022, 16:15	3.7 LOW	—
HotelDruid Hotel Management Software v3.0.3 and below was discovered to have exposed session tokens in multiple links via GET parameters, allowing attackers to access user session id's.