A vulnerability was identified in code-projects Hotel and Tourism Reservation System version 1.0 affecting the password_verify function in /admin/login.php of the Admin Login component. The vulnerability allows manipulation of the Password argument leading to improper authentication. The attack can be launched remotely and exploits are publicly available. This represents an authentication bypass vulnerability that could allow unauthorized administrative access to the hotel reservation system.