PT-2026-57970 · Code Projects · Online Job Portal
Dazhi
·
Published
2026-07-14
·
Updated
2026-07-14
·
CVE-2026-15676
CVSS v2.0
7.5
High
| Vector | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
code-projects Online Job Portal versions prior to 1.1
Description
A security flaw exists in the
/Admin/DeleteUser.php file. A manipulation of an unknown function within this file allows for SQL injection, which is a technique used to interfere with the queries that an application makes to its database. This issue can be exploited remotely.Recommendations
Update code-projects Online Job Portal to a version newer than 1.0.
As a temporary mitigation, restrict access to the
/Admin/DeleteUser.php file.Exploit
Fix
Special Elements Injection
SQL injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Online Job Portal