CVE-2026-10288 | code-projects Hotel and Tourism Reservation System 1.0 Admin Login /admin/login.php password_verify Password improper authentication

Inserito da Angelo Barbosa | Mag 31, 2026 | CVE

A vulnerability labeled as critical has been found in code-projects Hotel and Tourism Reservation System 1.0. This issue affects the function password_verify of the file /admin/login.php of the component Admin Login. Such manipulation of the argument Password leads to improper authentication.

This vulnerability is referenced as CVE-2026-10288. It is possible to launch the attack remotely. Furthermore, an exploit is available.

CVE-2026-10288 | code-projects Hotel and Tourism Reservation System 1.0 Admin Login /admin/login.php password_verify Password improper authentication

Post correlati

CVE-2025-0144 | Zoom Workplace App up to 6.2.4 out-of-bounds write

CVE-2024-40475 | SourceCodester Best House Rental Management System 1.0 payment_report.php access control

CVE-2025-14107 | ZSPACE Q2C NAS up to 1.1.0210050 HTTP POST Request /v2/file/safe/status zfilev2_api.SafeStatus safe_dir command injection

CVE-2026-2242 | janet-lang janet up to 1.40.1 src/core/specials.c janetc_if out-of-bounds (Issue 1700)