SourceCodester Ship Ferry Ticket Reservation System admin improper authorization

5.3 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P

Description

A weakness has been identified in SourceCodester Ship Ferry Ticket Reservation System 1.0. This affects an unknown function of the file /admin/. This manipulation of the argument page causes improper authorization. Remote exploitation of the attack is possible. The exploit has been made available to the public and could be used for attacks.

Basic Information

ID CVE-2026-10876

Source VulDB

Published Jun 4, 2026 at 23:30

Affected Product

Vendor SourceCodester

Product Ship Ferry Ticket Reservation System

Version 1.0

Affected Versions SourceCodester Ship Ferry Ticket Reservation System 1.0

CWE Classification

CWE-285 CWE-266

References

{
    "lastseen": "",
    "description": "A weakness has been identified in SourceCodester Ship Ferry Ticket Reservation System 1.0. This affects an unknown function of the file /admin/. This manipulation of the argument page causes improper authorization. Remote exploitation of the attack is possible. The exploit has been made available to the public and could be used for attacks.",
    "published": "2026-06-04T23:30:10.693Z",
    "modified": "2026-06-04T23:30:10.693Z",
    "type": "cve",
    "title": "SourceCodester Ship Ferry Ticket Reservation System admin improper authorization",
    "source": "VulDB",
    "references": "https://vuldb.com/vuln/368366\nhttps://vuldb.com/vuln/368366/cti\nhttps://vuldb.com/cve/CVE-2026-10876\nhttps://vuldb.com/submit/831870\nhttps://medium.com/@hemantrajbhati5555/missing-authorization-in-sourcecodester-ship-ferry-ticket-reservation-system-leads-to-unauthorized-7783134d6596\nhttps://www.sourcecodester.com/",
    "id": "CVE-2026-10876",
    "bulletinFamily": "",
    "cwe": [
        "CWE-285",
        "CWE-266"
    ],
    "cvelist": null,
    "sourceData": "SourceCodester Ship Ferry Ticket Reservation System 1.0",
    "sourceHref": "",
    "cvss": {
        "score": 5.3,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Ship Ferry Ticket Reservation System",
    "version": "1.0",
    "vendor": "SourceCodester",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

SourceCodester Ship Ferry Ticket Reservation System admin improper authorization_CVE-2026-10876