CVE-2026-14689
CodeAstro Apartment Visitor Management System 1.0 contains a SQL injection flaw in the add-apartment.php handler (parameter apartmentno). The vulnerability arises from unsafely handling the argument, enabling remote exploitation. Public exploits exist. Impact in CVSS terms is MEDIUM with potentia...