Lucene search
K
CarmeloIntern Membership Management System

13 matches found

CVE
CVE
added 2025/08/02 11:32 p.m.25 views

CVE-2025-8494

CVE-2025-8494 concerns code-projects Intern Membership Management System 1.0. The vulnerability is in the processing of the parameter ID in the file /admin/delete_student.php, where manipulation of ID leads to SQL injection. The issue is exploitable remotely and has been disclosed publicly. Conne...

9.8CVSS7.5AI score0.00473EPSS
Web
CVE
CVE
added 2026/01/08 8:2 a.m.23 views

CVE-2026-0701

The CVE-2026-0701 issue affects code-projects Intern Membership Management System 1.0, specifically the file /intern/admin/add_admin.php where manipulating the Username parameter enables SQL injection. This is described as remotely exploitable, with exploits publicly available. Connected sources ...

7.2CVSS5.2AI score0.00314EPSS
Web
CVE
CVE
added 2025/07/31 12:2 a.m.22 views

CVE-2025-8339

CVE-2025-8339 affects code-projects Intern Membership Management System 1.0. A SQL injection vulnerability exists in an unknown portion of the file /student_login.php caused by unsafely manipulating the user_name (and password) parameters, enabling remote exploitation. Exploit details are publicl...

9.8CVSS7.5AI score0.00559EPSS
Web
CVE
CVE
added 2026/01/08 5:32 a.m.22 views

CVE-2026-0698

CVE-2026-0698 affects code-projects Intern Membership Management System 1.0. The vulnerability is in /intern/admin/edit_students.php, where manipulation of the admin_id parameter allows SQL injection. Attacks can be launched remotely and the exploit has been disclosed publicly. Reported impact va...

7.2CVSS5.2AI score0.00369EPSS
Web
CVE
CVE
added 2025/08/02 10:32 p.m.21 views

CVE-2025-8493

CVE-2025-8493 affects code-projects Intern Membership Management System 1.0, with a SQL injection in /admin/edit_student_query.php caused by manipulation of the ID parameter. The vulnerability is remote and was publicly disclosed, with exploitation described as possible in the referenced sources....

9.8CVSS7.5AI score0.00469EPSS
Web
CVE
CVE
added 2025/08/03 1:32 a.m.21 views

CVE-2025-8495

CVE-2025-8495 affects code-projects Intern Membership Management System 1.0. The vulnerability is in an unknown function in the file /admin/edit_admin_query.php; manipulating the Username parameter leads to a remote SQL injection. The exploit has been publicly disclosed, indicating potential in-t...

9.8CVSS7.5AI score0.00473EPSS
Web
CVE
CVE
added 2026/01/08 8:32 p.m.21 views

CVE-2026-0728

The CVE-2026-0728 entry describes a SQL injection in code-projects Intern Membership Management System 1.0, via the admin_id parameter in /intern/admin/delete_admin.php. The issue is remotely exploitable and exploits have been publicly disclosed. No remediation/fix details are provided in the con...

7.2CVSS6.8AI score0.00389EPSS
Web
CVE
CVE
added 2025/07/31 12:32 a.m.19 views

CVE-2025-8340

CVE-2025-8340 affects Code-Projects Intern Membership Management System 1.0, specifically the Error Message Handler’s fill_details.php. The vulnerability arises from manipulating the email parameter, enabling remote cross-site scripting (XSS). The issue can be exploited remotely and the exploit h...

6.1CVSS4.5AI score0.00453EPSS
CVE
CVE
added 2026/01/08 7:2 a.m.19 views

CVE-2026-0700

CVE-2026-0700 affects Code-Projects Intern Membership Management System 1.0, with the vulnerability in /intern/admin/check_admin.php (unknown function) allowing manipulation of the Username parameter to trigger SQL injection. It is remotely exploitable and the exploit has been publicly disclosed....

9.8CVSS7.2AI score0.00379EPSS
Web
CVE
CVE
added 2026/01/08 9:32 p.m.16 views

CVE-2026-0729

CVE-2026-0729 concerns the Intern Membership Management System 1.0. The vulnerability is in the file /intern/admin/add_activity.php where manipulating the Title parameter enables SQL injection, with remote exploitation possible and exploits publicly available. Multiple sources corroborate the iss...

7.2CVSS6.6AI score0.0033EPSS
Web
CVE
CVE
added 2026/01/08 6:32 a.m.13 views

CVE-2026-0699

CVE-2026-0699 affects Code-Projects Intern Membership Management System 1.0. The vulnerability is an SQL injection in the /intern/admin/edit_activity.php function triggered by manipulating the activity_id parameter. Remote exploitation is possible and the exploit is public. Multiple sources agree...

7.2CVSS5AI score0.00313EPSS
Web
CVE
CVE
added 2026/01/11 11:2 p.m.13 views

CVE-2026-0850

The CVE-2026-0850 entry applies to the Intern Membership Management System 1.0. The vulnerability affects the /admin/delete_activity.php function where manipulating the activity_id parameter can induce an SQL injection. It is described as exploitable remotely and the exploit has been publicly dis...

7.2CVSS5.2AI score0.00311EPSS
Web
CVE
CVE
added 2026/01/08 4:32 a.m.11 views

CVE-2026-0697

The CVE-2026-0697 entry concerns code-projects Intern Membership Management System 1.0. A flaw in /intern/admin/edit_admin.php arises from manipulating the admin_id argument, causing an SQL injection vulnerability. The issue can be exploited remotely, and published exploits exist. Multiple connec...

7.2CVSS5.1AI score0.00313EPSS
Web