CVE-2026-5705 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A vulnerability was identified in code-projects Online Hotel Booking 1.0. Affected by this vulnerability is an unknown functionality of the file /booknow.php of…
Medium CVSS: 5.3

CVE-2026-5705

A vulnerability was identified in code-projects Online Hotel Booking 1.0. Affected by this vulnerability is an unknown functionality of the file /booknow.php of the component Booking Endpoint. Such manipulation of the argument roomname leads to cross site scripting. It is possible to launch the attack remotely. The exploit is publicly available and might be used.
Vendor
-
Product
-
CWE
CWE-79
Yayın Tarihi
2026-04-07 00:16:21
Güncelleme
2026-04-07 00:16:21
Source Identifier
cna@vuldb.com
KEV Date Added
-

Kategoriler

CWE-79 MEDIUM 2026

Referanslar

https://code-projects.org/ https://github.com/ahmadmarz10-hub/CVEsMarz/blob/main/Reflected%20Cross-Site%20Scripting%20(XSS)%20in%20Online%20Hotel%20Booking%20System%20roomname%20Parameter.md https://vuldb.com/submit/786325 https://vuldb.com/vuln/355521 https://vuldb.com/vuln/355521/cti