CVE-2026-4966 | itsourcecode Free Hotel Reservation System 1.0 index.php?view=edit ID sql injection

Inserito da Angelo Barbosa | Mar 27, 2026 | CVE

A vulnerability was found in itsourcecode Free Hotel Reservation System 1.0. It has been declared as critical. Impacted is an unknown function of the file /admin/mod_room/index.php?view=edit. Executing a manipulation of the argument ID can lead to sql injection.

This vulnerability is tracked as CVE-2026-4966. The attack can be launched remotely. Moreover, an exploit is present.

CVE-2026-4966 | itsourcecode Free Hotel Reservation System 1.0 index.php?view=edit ID sql injection

Post correlati

CVE-2024-1168 | SEOPress Plugin up to 7.9 on WordPress Social Image URL cross site scripting

CVE-2024-13062 | ASUS Router backdoor

CVE-2026-2721 | MailArchiver Plugin up to 4.4.0 on WordPress Setting cross site scripting

CVE-2026-0906 | Google Chrome up to 143.0.7499.192 UI ui layer