CVE-2026-0700

Name of the Vulnerable Software and Affected Versions Intern Membership Management System version 1.0

Description A SQL injection issue exists in code-projects Intern Membership Management System version 1.0. The issue is located in the /intern/admin/check admin.php file, within an unknown function. Manipulating the Username parameter can lead to SQL injection, and the attack can be executed remotely. The exploit has been publicly disclosed.

Recommendations Intern Membership Management System version 1.0: Sanitize or validate the Username parameter to prevent SQL injection attacks. As a temporary workaround, consider restricting access to the /intern/admin/check admin.php file.