CVE-2026-4615 PUBLISHED

A vulnerability was identified in SourceCodester Online Catering Reservation 1.0. Impacted is an unknown function of the file /search.php. Such manipulation of the argument rcode leads to sql injection. The attack may be performed from remote. The exploit is publicly available and might be used.

• WeQi (VulDB User) reporter

• VDB-352479 | SourceCodester Online Catering Reservation search.php sql injection
• VDB-352479 | CTI Indicators (IOB, IOC, TTP, IOA)
• Submit #775735 | sourcecodester Online Catering Reservation V1.0 SQL injection
• https://github.com/WHOAMI-xiaoyu/CVE/blob/main/CVE_5.md
• https://www.sourcecodester.com/

• SQL Injection CWE
• Injection CWE