Amttgroup

Hibos

11 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.2

CVE-2025-14090

Exploit
  • EPSS 0.04%
  • Veröffentlicht 05.12.2025 15:32:08
  • Zuletzt bearbeitet 10.12.2025 23:10:04

A security flaw has been discovered in AMTT Hotel Broadband Operation System 1.0. This affects an unknown part of the file /manager/card/cardmake_down.php. Performing manipulation of the argument ID results in sql injection. It is possible to initiat...

9.8

CVE-2025-13123

Exploit
  • EPSS 0.04%
  • Veröffentlicht 13.11.2025 19:02:06
  • Zuletzt bearbeitet 24.11.2025 12:19:51

A flaw has been found in AMTT Hotel Broadband Operation System 1.0. The impacted element is an unknown function of the file /user/portal/get_firstdate.php. Executing manipulation of the argument uid can lead to sql injection. It is possible to launch...

9.8

CVE-2025-12253

Exploit
  • EPSS 0.05%
  • Veröffentlicht 27.10.2025 09:02:06
  • Zuletzt bearbeitet 28.10.2025 02:12:00

A vulnerability was determined in AMTT Hotel Broadband Operation System 1.0. Affected by this vulnerability is an unknown functionality of the file /user/portal/get_expiredtime.php. This manipulation of the argument uid causes sql injection. The atta...

9.8

CVE-2016-15048

Exploit
  • EPSS 0.85%
  • Veröffentlicht 22.10.2025 14:21:01
  • Zuletzt bearbeitet 31.12.2025 13:12:22

AMTT Hotel Broadband Operation System (HiBOS) contains an unauthenticated command injection vulnerability in the /manager/radius/server_ping.php endpoint. The application constructs a shell command that includes the user-supplied ip parameter and exe...

7.2

CVE-2025-3983

Exploit
  • EPSS 3.88%
  • Veröffentlicht 27.04.2025 19:31:03
  • Zuletzt bearbeitet 17.10.2025 17:13:24

A vulnerability has been found in AMTT Hotel Broadband Operation System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /manager/system/nlog_down.php. The manipulation of the argument ProtocolTyp...

9.8

CVE-2025-2701

Exploit
  • EPSS 2.57%
  • Veröffentlicht 24.03.2025 09:00:06
  • Zuletzt bearbeitet 17.10.2025 17:11:51

A vulnerability classified as critical was found in AMTT Hotel Broadband Operation System 1.0. This vulnerability affects the function popen of the file /manager/network/port_setup.php. The manipulation of the argument SwitchVersion/SwitchWrite/Switc...

8.8

CVE-2024-11051

Exploit
  • EPSS 0.07%
  • Veröffentlicht 10.11.2024 08:15:03
  • Zuletzt bearbeitet 17.10.2025 17:03:23

A vulnerability was found in AMTT Hotel Broadband Operation System up to 3.0.3.151204. It has been classified as critical. Affected is an unknown function of the file /manager/frontdesk/online_status.php. The manipulation of the argument AccountID le...

5.4

CVE-2024-11050

Exploit
  • EPSS 0.13%
  • Veröffentlicht 10.11.2024 07:15:03
  • Zuletzt bearbeitet 17.10.2025 17:03:23

A vulnerability was found in AMTT Hotel Broadband Operation System up to 3.0.3.151204 and classified as problematic. This issue affects some unknown processing of the file /language.php. The manipulation of the argument LangID/LangName/LangEName lead...

9.8

CVE-2024-41476

  • EPSS 0.3%
  • Veröffentlicht 12.08.2024 13:38:30
  • Zuletzt bearbeitet 17.10.2025 17:13:35

AMTT Hotel Broadband Operation System (HiBOS) V3.0.3.151204 and before is vulnerable to SQL Injection via /manager/card/card_detail.php.

5.5

CVE-2024-39072

  • EPSS 0.18%
  • Veröffentlicht 09.07.2024 21:15:15
  • Zuletzt bearbeitet 17.10.2025 17:03:23

AMTT Hotel Broadband Operation System (HiBOS) v3.0.3.151204 is vulnerable to SQL injection via manager/conference/calendar_remind.php.