Description

A vulnerability was found in code-projects Online Product Reservation System 1.0. Impacted is an unknown function of the component Administration Backend. The manipulation results in improper authentication. The attack may be performed from remote. The exploit has been made public and could be used.

Related CPE's

Could not find any relations

References

https://code-projects.org/

https://github.com/foeCat/CVE/blob/main/OnlineProductReservation_PHP/auth_bypass_admin_panel.md

https://github.com/foeCat/CVE/blob/main/OnlineProductReservation_PHP/auth_bypass_admin_panel.md#poc

https://vuldb.com/?ctiid.339499

https://vuldb.com/?id.339499

https://vuldb.com/?submit.731127

Weaknesses

[email protected]

Primary
CWE-287

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

7.3 · High

Information

Source identifier

[email protected]

Vulnerability status

Received

Published

2026-01-05T13:15:55.457Z

42 hours ago

Last modified

2026-01-05T13:15:55.457Z

42 hours ago