Loading market data...
← Back to CVE feed

CVE-2026-14766

MEDIUM CVSS 6.3 View on NVD ↗

Description

A vulnerability was identified in CodeAstro Apartment Visitor Management System 1.0. Affected by this issue is some unknown functionality of the file /apartment-visitor/search-result.php of the component POST Parameter Handler. The manipulation of the argument searchdata leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Published: Jul 05, 2026 19:16 UTC Modified: Jul 06, 2026 15:16 UTC