CVE-2026-14755
Last modified
CVE-2026-14755 is a high-severity vulnerability rated 7.3/10 on the CVSS scale. A vulnerability has been found in code-projects Hotel and Tourism Reservation 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/reservations.php of the component Reservations Management Page. EPSS estimates a 0.27% chance of exploitation in the next 30 days.
Description
A vulnerability has been found in code-projects Hotel and Tourism Reservation 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/reservations.php of the component Reservations Management Page. The manipulation of the argument delete leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Weakness Enumeration
Affected Software
Source: CNA advisory (CVE.org). NVD analysis pending.
| Vendor | Product | Versions |
|---|---|---|
| code-projects | Hotel and Tourism Reservation | 1.0 |
References
Timeline
- Published
- Last Modified
- Status
- Deferred
Frequently Asked Questions
What is CVE-2026-14755?
How severe is CVE-2026-14755?
How do I fix CVE-2026-14755?
Related CVEs from 2026
- CVE-2026-1475An out-of-band SQL injection vulnerability (OOB SQLi) has be…7.5
- CVE-2026-14750A security flaw has been discovered in mjperpinosa stumasy u…7.3
- CVE-2026-14751A weakness has been identified in mjperpinosa stumasy up to …6.3
- CVE-2026-14752A security vulnerability has been detected in mjperpinosa st…3.5
- CVE-2026-14753A vulnerability was detected in mjperpinosa stumasy up to 32…7.3
- CVE-2026-14754A flaw has been found in code-projects Hotel and Tourism Res…7.3
- CVE-2026-14756A vulnerability was found in code-projects Hotel and Tourism…7.3
- CVE-2026-14757A vulnerability was determined in radareorg radare2 up to 6.…5.3
- CVE-2026-14758A vulnerability was identified in radareorg radare2 up to 6.…5.5
- CVE-2026-14759A security flaw has been discovered in radareorg radare2 up …7.8
- CVE-2026-1476An out-of-band SQL injection vulnerability (OOB SQLi) has be…7.5
- CVE-2026-14760A weakness has been identified in radareorg radare2 up to 6.…7.8
Are you affected by CVE-2026-14755?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST
