Analysis and contextual insights are available on OpenCVE Cloud.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
No advisories yet.
Sun, 05 Jul 2026 14:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A flaw has been found in code-projects Hotel and Tourism Reservation 1.0. Affected is an unknown function of the file /admin/add_room.php. Executing a manipulation of the argument delete_image/edit/description/number/price/rooms/type can lead to sql injection. The attack can be launched remotely. The exploit has been published and may be used. | |
| Title | code-projects Hotel and Tourism Reservation add_room.php sql injection | |
| First Time appeared |
Code-projects
Code-projects hotel And Tourism Reservation |
|
| Weaknesses | CWE-74 CWE-89 |
|
| CPEs | cpe:2.3:a:code-projects:hotel_and_tourism_reservation:*:*:*:*:*:*:*:* | |
| Vendors & Products |
Code-projects
Code-projects hotel And Tourism Reservation |
|
| References |
| |
| Metrics |
cvssV2_0
|
Status: PUBLISHED
Assigner: VulDB
Published:
Updated: 2026-07-05T14:00:08.727Z
Reserved: 2026-07-04T15:56:13.427Z
Link: CVE-2026-14754
No data.
No data.
No data.
OpenCVE Enrichment
No data.