CVE-2021-42949 – The component controlla_login function in HotelDruid Hotel Management Software v3.0.3 gene …

Vuln ID: CVE-2021-42949

Published:  2022-09-16  15:15:09Z

Description: The component controlla_login function in HotelDruid Hotel Management Software v3.0.3 generates a predictable session token, allowing attackers to bypass authentication via bruteforce attacks.

Source: NVD.NIST.GOV