CVE-2026-10253NVD

Description

A vulnerability was detected in itsourcecode Online House Rental System 1.0. This impacts an unknown function of the file /manage_payment.php. The manipulation of the argument ID results in sql injection. It is possible to launch the attack remotely. The exploit is now public and may be used.

Severity Level

HIGH (7.3)

Published Date

01/06/2026

Last Modified

01/06/2026

Exploitation Status

????

References

https://vuldb.com/vuln/367531
https://vuldb.com/vuln/367531/cti
https://vuldb.com/cve/CVE-2026-10253
https://vuldb.com/submit/824097
https://github.com/zhengdexu-bot/zhengdexu/issues/5
https://itsourcecode.com/