A vulnerability, which was classified as critical, was found in Hotel Booking Management 1.0. Affected is an unknown function of the file update.php. The manipulation of the argument id leads to sql injection.
This vulnerability is traded as CVE-2023-49989. The attack needs to be done within the local network. There is no exploit available.