SecBoard
Zurück zur CVE-Übersicht

CVE-2026-14700

HIGH(7.3)

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Risk Signal Score28/100 — MITTEL
  • CVSS 7.3 — Hoch
  • Weniger als 24 Stunden alt

Beschreibung

A security vulnerability has been detected in code-projects Internship Management System 1.0. The impacted element is an unknown function of the file employer/login.php of the component Employer Login Endpoint. The manipulation of the argument email/password leads to sql injection. Remote exploitation of the attack is possible. The exploit has been disclosed publicly and may be used.

Referenzen