CVE-2026-14746

Summary

A security vulnerability has been detected in code-projects Real State Services 1.0. Affected is an unknown function of the file /addprojectrent.php. The manipulation of the argument amen leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed publicly and may be used.

Affected Software

VendorProductVersion RangeStatus
code-projectsReal State Services1.0affected

Weaknesses

  • CWE-89: SQL Injection
  • CWE-74: Injection

References