CVE-2026-4876 | itsourcecode Free Hotel Reservation System 1.0 index.php?view=editpic ID sql injection

Inserito da Angelo Barbosa | Mar 26, 2026 | CVE

A vulnerability, which was classified as critical, was found in itsourcecode Free Hotel Reservation System 1.0. The impacted element is an unknown function of the file /admin/mod_amenities/index.php?view=editpic. Such manipulation of the argument ID leads to sql injection.

This vulnerability is listed as CVE-2026-4876. The attack may be performed from remote. In addition, an exploit is available.

CVE-2026-4876 | itsourcecode Free Hotel Reservation System 1.0 index.php?view=editpic ID sql injection

Post correlati

CVE-2025-11513 | code-projects E-Commerce Website 1.0 supplier_update.php supp_id sql injection

CVE-2024-4227 | Genivia gSOAP up to 2.8.132 XML Parser iteration

CVE-2024-0161 | Dell PowerEdge Platform up to 2.21.1 SMM Communication input validation (dsa-2024-006)

CVE-2024-24920 | Siemens Simcenter Femap prior 2401.0000 Catia Model File out-of-bounds write (ssa-000072)