A vulnerability classified as critical was found in CodeAstro Apartment Visitor Management System 1.0. This vulnerability affects unknown code of the file /apartment-visitor/edit-apartment.php. Executing a manipulation of the argument editid can lead to sql injection.
This vulnerability is registered as CVE-2026-14797. It is possible to launch the attack remotely. Furthermore, an exploit is available.