CVE-2026-13557

The CVE-2026-13557 affects itsourcecode Online Hotel Management System 1.0. An attacker can manipulate the Name argument in the POST handler at /admin/mod_room/controller.php?action=add, triggering cross-site scripting. The vulnerability is exploitable remotely, and public exploit code appears to...

CVE-2026-13555

The CVE-2026-13555 entry affects itsourcecode Online Hotel Management System 1.0. Affected component: /admin/mod_users/controller.php?action=add. Description indicates that manipulating the Name parameter yields SQL injection, exploitable remotely. Public exploit exists (proof-of-concept level). ...

SourceCodester Resort Reservation System 代码问题漏洞

The SourceCodester Resort Reservation System is an open-source resort reservation system developed by SourceCodester. Version 1.0 of the SourceCodester Resort Reservation System has code-related vulnerabilities. These vulnerabilities stem from incorrect handling of parameters in the file...

Online Ordering System 代码问题漏洞

Online Ordering System is a multi-store ordering system for janobe individual developers. It can be used for any small business. A security vulnerability exists in Online Ordering System version v2.3.2, which stems from its /admin/products/controller.php?action=add component that allows an attack...