CVE-2026-0698

Name of the Vulnerable Software and Affected Versions code-projects Intern Membership Management System version 1.0

Description A security issue exists in code-projects Intern Membership Management System version 1.0. The issue involves the manipulation of the admin id argument within an unknown function of the file '/intern/admin/edit students.php', leading to a SQL injection. The attack can be initiated remotely. The exploit for this issue has been publicly disclosed.

Recommendations For code-projects Intern Membership Management System version 1.0, sanitize the admin id input to prevent SQL injection. As a temporary workaround, restrict access to the file '/intern/admin/edit students.php' to minimize the risk of exploitation.