Improper Session Invalidation in SourceCodester Online Boat Reservation System
CVE-2026-14725

5.3MEDIUM

What is CVE-2026-14725?

A vulnerability was detected in the SourceCodester Online Boat Reservation System 1.0, which involves an improper session invalidation mechanism. This flaw allows for remote manipulation, potentially leading to session expiration. As a result, attackers can exploit this publicly available vulnerability to disrupt normal user sessions, posing a significant risk to system integrity and user data security.

Affected Version(s)

Online Boat Reservation System 1.0

References

CVSS V4

Score:
5.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Hemant Raj Bhati (VulDB User)
.