CVE-2026-10289 | code-projects Hotel and Tourism Reservation System 1.0 /ht/tour.php name /email /people /number cross site scripting

Inserito da Angelo Barbosa | Mag 31, 2026 | CVE

A vulnerability marked as problematic has been reported in code-projects Hotel and Tourism Reservation System 1.0. Impacted is an unknown function of the file /ht/tour.php. Performing a manipulation of the argument name /email /people /number results in cross site scripting.

This vulnerability is identified as CVE-2026-10289. The attack can be initiated remotely. Additionally, an exploit exists.

CVE-2026-10289 | code-projects Hotel and Tourism Reservation System 1.0 /ht/tour.php name /email /people /number cross site scripting

Post correlati

CVE-2025-10410 | SourceCodester Link Status Checker 1.0 index.php proxy server-side request forgery

CVE-2025-5305 | Password Reset with Code REST API Plugin up to 0.0.16 on WordPress inadequate encryption

CVE-2023-50270 | Apache DolphinScheduler up to 3.2.0 Password Change session expiration

CVE-2026-5475 | NASA cFS up to 7.0.0 CCSDS Header Size cfe_sb_priv.c CFE_SB_TransmitMsg memory corruption (Issue 953)