CVE-2026-13554 in Online Hotel Management Systeminfo

Prediction

by VulDB Data Team • 06/28/2026

A vulnerability has been found in itsourcecode Online Hotel Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/mod_amenities/controller.php?action=add of the component POST Request Handler. The manipulation of the argument Name leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsible

VulDB

Moderation

accepted

Entry

VDB-374562

CPE

ready

CWE

CWE-79 (confirmed)

Exploit

Download

CVSS

4.3 (VulDB)

EPSS

0.00000

KEV

Activities

low

Sector

Hospital

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-13554
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-13554
CVE Details	https://www.cvedetails.com/cve/CVE-2026-13554/

◂ Previous Overview Next ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!