CVE-2026-14763
Last modified
CVE-2026-14763 is a high-severity vulnerability rated 7.3/10 on the CVSS scale. A flaw has been found in code-projects Hotel and Tourism Reservation 1.0. This affects an unknown function of the file /admin/tour_reserves.php of the component Tour Reservations Page. EPSS estimates a 0.27% chance of exploitation in the next 30 days.
Description
A flaw has been found in code-projects Hotel and Tourism Reservation 1.0. This affects an unknown function of the file /admin/tour_reserves.php of the component Tour Reservations Page. This manipulation of the argument tour causes sql injection. The attack can be initiated remotely. The exploit has been published and may be used.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Weakness Enumeration
Affected Software
Source: CNA advisory (CVE.org). NVD analysis pending.
| Vendor | Product | Versions |
|---|---|---|
| code-projects | Hotel and Tourism Reservation | 1.0 |
References
Timeline
- Published
- Last Modified
- Status
- Deferred
Frequently Asked Questions
What is CVE-2026-14763?
How severe is CVE-2026-14763?
How do I fix CVE-2026-14763?
Related CVEs from 2026
- CVE-2026-14758A vulnerability was identified in radareorg radare2 up to 6.…5.5
- CVE-2026-14759A security flaw has been discovered in radareorg radare2 up …7.8
- CVE-2026-1476An out-of-band SQL injection vulnerability (OOB SQLi) has be…7.5
- CVE-2026-14760A weakness has been identified in radareorg radare2 up to 6.…7.8
- CVE-2026-14761A security vulnerability has been detected in radareorg rada…5.5
- CVE-2026-14762A vulnerability was detected in code-projects Hotel and Tour…7.3
- CVE-2026-14764A vulnerability has been found in code-projects Hotel and To…7.3
- CVE-2026-14766A vulnerability was identified in CodeAstro Apartment Visito…6.3
- CVE-2026-14767A security flaw has been discovered in CodeAstro Ecommerce W…6.3
- CVE-2026-14768A weakness has been identified in code-projects Real State S…7.3
- CVE-2026-14769A security vulnerability has been detected in code-projects …7.3
- CVE-2026-1477An out-of-band SQL injection vulnerability (OOB SQLi) has be…7.5
Are you affected by CVE-2026-14763?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST
