ГлавнаяУязвимости → CVE-2026-2689
7.3высокая

CVE-2026-2689

Описание

A vulnerability was detected in itsourcecode Event Management System 1.0. Affected is an unknown function of the file /admin/manage_booking.php. The manipulation of the argument ID results in sql injection. The attack may be performed from remote. The exploit is now public and may be used.

Затрагиваемое ПО
Admerc Event management system
CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Источники
https://github.com/ltranquility/CVE/issues/38https://itsourcecode.com/https://vuldb.com/?ctiid.346489https://vuldb.com/?id.346489https://vuldb.com/?submit.754238