CVE-2026-3819

SourceCodester Resort Reservation System Reservation Management page cross site scripting

CVSS 5.1 MEDIUMEPSS 0.3%CWE-79 CWE-94

A vulnerability has been found in SourceCodester Resort Reservation System 1.0. The affected element is an unknown function of the file /?page=manage_reservation of the component Reservation Management Module. Such manipulation of the argument ID leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P

Affected products

SourceCodester · Resort Reservation System

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://medium.com/@rvpipalwa/stored-cross-site-scripting-xss-in-reservation-management-sourcecodester-resort-reservation-894ee77d7312 https://vuldb.com/?ctiid.349785 https://vuldb.com/?id.349785 https://vuldb.com/?submit.769578 https://www.sourcecodester.com/