ГлавнаяУязвимости → CVE-2026-4237
7.3высокая

CVE-2026-4237

Описание

A flaw has been found in itsourcecode Free Hotel Reservation System 1.0. This vulnerability affects unknown code of the file /hotel/admin/mod_reports/index.php. Executing a manipulation of the argument Home can lead to sql injection. The attack may be performed from remote. The exploit has been published and may be used.

CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Источники
https://github.com/yuji0903/silver-guide/issues/14https://itsourcecode.com/https://vuldb.com/?ctiid.351179https://vuldb.com/?id.351179https://vuldb.com/?submit.771243