A vulnerability categorized as problematic has been discovered in itsourcecode Online Hotel Management System 1.0 . This vulnerability affects unknown code of the file /admin/mod_room/controller.php?action=add of the component POST Request Handler . Such manipulation of the argument Name leads to cross site scripting. This vulnerability is traded as CVE-2026-13557 . The attack may be launched remotely. Furthermore, there is an exploit available.