A vulnerability classified as critical has been found in SourceCodester Online Boat Reservation System 1.0 . Affected by this vulnerability is an unknown functionality of the component Administrative Endpoint . The manipulation leads to improper authorization. This vulnerability is documented as CVE-2026-10693 . The attack can be initiated remotely. Additionally, an exploit exists. Multiple endpoints are affected.