Analysis and contextual insights are available on OpenCVE Cloud.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
No advisories yet.
Sun, 05 Jul 2026 14:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A vulnerability was found in code-projects Hotel and Tourism Reservation 1.0. Affected by this issue is some unknown functionality of the file /admin/add_tour.php of the component Tour Management Page. The manipulation of the argument delete_image results in sql injection. The attack may be launched remotely. The exploit has been made public and could be used. | |
| Title | code-projects Hotel and Tourism Reservation Tour Management add_tour.php sql injection | |
| First Time appeared |
Code-projects
Code-projects hotel And Tourism Reservation |
|
| Weaknesses | CWE-74 CWE-89 |
|
| CPEs | cpe:2.3:a:code-projects:hotel_and_tourism_reservation:*:*:*:*:*:*:*:* | |
| Vendors & Products |
Code-projects
Code-projects hotel And Tourism Reservation |
|
| References |
| |
| Metrics |
cvssV2_0
|
Status: PUBLISHED
Assigner: VulDB
Published:
Updated: 2026-07-05T14:30:08.074Z
Reserved: 2026-07-04T15:56:18.347Z
Link: CVE-2026-14756
No data.
No data.
No data.
OpenCVE Enrichment
No data.