PT-2026-1975 · Code Projects · Intern Membership Management System

Xkalami

Publicado

2026-01-08

Atualizado

2026-01-08

CVE-2026-0701

CVSS v3.1

7.2

Alta

Vetor

AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions code-projects Intern Membership Management System version 1.0

Description A flaw exists in code-projects Intern Membership Management System 1.0 where manipulation of the Username argument in the file '/intern/admin/add admin.php' can lead to a SQL injection. This issue is remotely exploitable and an exploit is publicly available.

Recommendations Versions prior to 1.0 should be updated.

Exploit

Correção

SQL injection

Special Elements Injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-89CWE-74

Identificadores relacionados

CVE-2026-0701

Produtos afetados

Intern Membership Management System

PT-2026-1975 · Code Projects · Intern Membership Management System

CVE-2026-0701

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 12