Is CVE-2026-13552 being exploited?

No public exploit is currently tracked.

How severe is CVE-2026-13552?

CVE-2026-13552 has a CVSS v3 severity of HIGH (7.3).

Back

CVE-2026-13552

Description

A vulnerability was detected in itsourcecode Online Hotel Management System 1.0. This impacts an unknown function of the file /admin/mod_amenities/controller.php?action=edit. Performing a manipulation of the argument amen_id results in sql injection. It is possible to initiate the attack remotely. The exploit is now public and may be used.