Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
5.3
Janobe Resort Reservation System SQL Injection Vulnerability
CVE-2026-3771
Summary
A bug in the Janobe Resort Reservation System allows an attacker to manipulate data, potentially exposing sensitive information. This issue can be exploited remotely, so it's essential to update the system to a fixed version. If you're using the affected version, consider upgrading to a patched version to prevent potential attacks.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| oretnom23 | resort_reservation_system | 1.0 | – |
Original title
A vulnerability has been found in SourceCodester/janobe Resort Reservation System 1.0. This vulnerability affects unknown code of the file /accomodation.php. Such manipulation of the argument q lea...
Original description
A vulnerability has been found in SourceCodester/janobe Resort Reservation System 1.0. This vulnerability affects unknown code of the file /accomodation.php. Such manipulation of the argument q leads to sql injection. The attack may be performed from remote. The exploit has been disclosed to the public and may be used.
nvd CVSS2.0
6.5
nvd CVSS3.1
6.3
nvd CVSS4.0
5.3
Vulnerability type
CWE-74
Injection
CWE-89
SQL Injection
Published: 8 Mar 2026 · Updated: 13 Mar 2026 · First seen: 8 Mar 2026