CNNVD-202601-1387 Information

Jan 08, 2026 cve

CNNVD ID

CNNVD-202601-1387

CVE-2026-0729

CNNVD Published: 2026-01-08

Description (Chinese)

Code-Projects Intern Membership Management System是Code-Projects开源的一个实习生会员管理系统。 Code-Projects Intern Membership Management System 1.0版本存在SQL注入漏洞，该漏洞源于对文件/intern/admin/add_activity.php中参数Title的错误操作，可能导致SQL注入攻击。

Description (English)

Code-Projects Inter-Membership Management System is an open-source intern member management system for Code-Projects. The Code-Project Inter-Membership Management System Version 1.0 contains an injection loophole in SQL, which stems from a mishandling of the parameter Title in the document/intern/admin/add action.php, which could lead to an attack on SQL injection.

Hazard Level

High

Vulnerability Type

SQL注入

Affected Vendor

Code-Projects

Published

2026-01-08

Last Modified

2026-02-24

References

https://code-projects.org/ https://github.com/xkalami-Tta0/CVE/blob/main/Intern%20Membership%20Management%20System/Intern%20Membership%20Management%20System%20add_activity.php%20sql%20injection.md https://vuldb.com/?ctiid.340126 https://vuldb.com/?id.340126 https://vuldb.com/?submit.733004 https://access.redhat.com/security/cve/cve-2026-0729

Share on: