CVE-2026-4875 | itsourcecode Free Hotel Reservation System 1.0 index.php?view=add image unrestricted upload

Inserito da Angelo Barbosa | Mar 26, 2026 | CVE

A vulnerability, which was classified as critical, has been found in itsourcecode Free Hotel Reservation System 1.0. The affected element is an unknown function of the file /admin/mod_amenities/index.php?view=add. This manipulation of the argument image causes unrestricted upload.

This vulnerability is tracked as CVE-2026-4875. The attack is possible to be carried out remotely. Moreover, an exploit is present.

CVE-2026-4875 | itsourcecode Free Hotel Reservation System 1.0 index.php?view=add image unrestricted upload

Post correlati

CVE-2024-49516 | Adobe Substance3D Painter up to 10.1.0 out-of-bounds write (apsb24-86)

CVE-2024-11403 | LibJXL JPEG Decoder out-of-bounds write

CVE-2025-26571 | wibiya Wibiya Toolbar Plugin up to 2.0 on WordPress cross-site request forgery

CVE-2024-30099 | Microsoft Windows up to Server 2022 23H2 toctou