CVE-2021-42948 – HotelDruid Hotel Management Software v3.0.3 and below was discovered to have exposed sessi …

Vuln ID: CVE-2021-42948

Published:  2022-09-16  16:15:09Z

Description: HotelDruid Hotel Management Software v3.0.3 and below was discovered to have exposed session tokens in multiple links via GET parameters, allowing attackers to access user session id’s.

Source: NVD.NIST.GOV