Janobe Resort Reservation System vulnerabilities

CVE-2026-3806 [MEDIUM] CWE-74 CVE-2026-3806: A weakness has been identified in SourceCodester/janobe Resort Reservation System 1.0. This issue af A weakness has been identified in SourceCodester/janobe Resort Reservation System 1.0. This issue affects some unknown processing of the file /room_rates.php. This manipulation of the argument q causes sql injection. The attack can be initiated remotely. The exploit has been made available to the public and could be used for attacks.

CVE-2026-3800 [MEDIUM] CWE-284 CVE-2026-3800: A vulnerability has been found in SourceCodester/janobe Resort Reservation System 1.0. Affected is t A vulnerability has been found in SourceCodester/janobe Resort Reservation System 1.0. Affected is the function doInsert of the file /controller.php?action=add. Such manipulation of the argument image leads to unrestricted upload. The attack can be executed remotely. The exploit has been disclosed to the public and may be used.

CVE-2026-3771 [MEDIUM] CWE-74 CVE-2026-3771: A vulnerability has been found in SourceCodester/janobe Resort Reservation System 1.0. This vulnerab A vulnerability has been found in SourceCodester/janobe Resort Reservation System 1.0. This vulnerability affects unknown code of the file /accomodation.php. Such manipulation of the argument q leads to sql injection. The attack may be performed from remote. The exploit has been disclosed to the public and may be used.