CVE-2026-7133

· NIST NVD ↗

A vulnerability was determined in code-projects Online Lot Reservation System 1.0. This impacts an unknown function of the file /activity.php. This manipulation of the argument directory causes unrestricted upload. The attack can be initiated remotely. The exploit has been publicly disclosed and may be utilized.

MEDIUM
CVSS severity
4.7
CVSS base score
2026-04-27
Published

CWE codes

CWE-284CWE-434

Sources