A vulnerability was detected in code-projects Internship Management System 1.0. This affects an unknown function of the file employer/details/change_password.php of the component Password Change Endpoint. The manipulation of the argument Current results in sql injection. The attack can be executed remotely. The exploit is now public and may be used.
Metrics
Affected Vendors & Products
References
History
Mon, 06 Jul 2026 18:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Sun, 05 Jul 2026 04:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A vulnerability was detected in code-projects Internship Management System 1.0. This affects an unknown function of the file employer/details/change_password.php of the component Password Change Endpoint. The manipulation of the argument Current results in sql injection. The attack can be executed remotely. The exploit is now public and may be used. | |
| Title | code-projects Internship Management System Password Change Endpoint change_password.php sql injection | |
| First Time appeared |
Code-projects
Code-projects internship Management System |
|
| Weaknesses | CWE-74 CWE-89 |
|
| CPEs | cpe:2.3:a:code-projects:internship_management_system:*:*:*:*:*:*:*:* | |
| Vendors & Products |
Code-projects
Code-projects internship Management System |
|
| References |
| |
| Metrics |
cvssV2_0
|
Status: PUBLISHED
Assigner: VulDB
Published: 2026-07-05T03:45:08.160Z
Updated: 2026-07-06T18:02:08.536Z
Reserved: 2026-07-04T05:24:37.642Z
Link: CVE-2026-14701
Updated: 2026-07-06T18:01:40.826Z
No data.
No data.