CVE-2026-14700

Summary

A security vulnerability has been detected in code-projects Internship Management System 1.0. The impacted element is an unknown function of the file employer/login.php of the component Employer Login Endpoint. The manipulation of the argument email/password leads to sql injection. Remote exploitation of the attack is possible. The exploit has been disclosed publicly and may be used.

Affected Software

VendorProductVersion RangeStatus
code-projectsInternship Management System1.0affected

Weaknesses

  • CWE-89: SQL Injection
  • CWE-74: Injection

References