CVE-2026-14764
Last modified
CVE-2026-14764 is a high-severity vulnerability rated 7.3/10 on the CVSS scale. A vulnerability has been found in code-projects Hotel and Tourism Reservation 1.0. This impacts an unknown function of the file /admin/add_event.php of the component Event Management Page. EPSS estimates a 0.27% chance of exploitation in the next 30 days.
Description
A vulnerability has been found in code-projects Hotel and Tourism Reservation 1.0. This impacts an unknown function of the file /admin/add_event.php of the component Event Management Page. Such manipulation of the argument fdetails leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Weakness Enumeration
Affected Software
Source: CNA advisory (CVE.org). NVD analysis pending.
| Vendor | Product | Versions |
|---|---|---|
| code-projects | Hotel and Tourism Reservation | 1.0 |
References
Timeline
- Published
- Last Modified
- Status
- Deferred
Frequently Asked Questions
What is CVE-2026-14764?
How severe is CVE-2026-14764?
How do I fix CVE-2026-14764?
Related CVEs from 2026
- CVE-2026-14759A security flaw has been discovered in radareorg radare2 up …7.8
- CVE-2026-1476An out-of-band SQL injection vulnerability (OOB SQLi) has be…7.5
- CVE-2026-14760A weakness has been identified in radareorg radare2 up to 6.…7.8
- CVE-2026-14761A security vulnerability has been detected in radareorg rada…5.5
- CVE-2026-14762A vulnerability was detected in code-projects Hotel and Tour…7.3
- CVE-2026-14763A flaw has been found in code-projects Hotel and Tourism Res…7.3
- CVE-2026-14766A vulnerability was identified in CodeAstro Apartment Visito…6.3
- CVE-2026-14767A security flaw has been discovered in CodeAstro Ecommerce W…6.3
- CVE-2026-14768A weakness has been identified in code-projects Real State S…7.3
- CVE-2026-14769A security vulnerability has been detected in code-projects …7.3
- CVE-2026-1477An out-of-band SQL injection vulnerability (OOB SQLi) has be…7.5
- CVE-2026-14770A vulnerability was detected in SourceCodester Class and Exa…7.3
Are you affected by CVE-2026-14764?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST
