CVE-2026-4615

HIGH NVD

CVSS Score 7.3

Severity HIGH

Published Mar 24, 2026

Vendor unknown

Description

A vulnerability was identified in SourceCodester Online Catering Reservation 1.0. Impacted is an unknown function of the file /search.php. Such manipulation of the argument rcode leads to sql injection. The attack may be performed from remote. The exploit is publicly available and might be used.

References

https://github.com/WHOAMI-xiaoyu/CVE/blob/main/CVE_5.md
https://vuldb.com/?ctiid.352479
https://vuldb.com/?id.352479
https://vuldb.com/?submit.775735
https://www.sourcecodester.com/