A security vulnerability has been detected in code-projects Assessment Management 1.0. This affects an unknown part of the file /admin/remove-user.php. The manipulation of the argument ID leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed publicly and may be used.
Metrics
Affected Vendors & Products
References
History
Mon, 06 Jul 2026 18:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Sat, 04 Jul 2026 21:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A security vulnerability has been detected in code-projects Assessment Management 1.0. This affects an unknown part of the file /admin/remove-user.php. The manipulation of the argument ID leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed publicly and may be used. | |
| Title | code-projects Assessment Management remove-user.php cross site scripting | |
| First Time appeared |
Code-projects
Code-projects assessment Management |
|
| Weaknesses | CWE-79 CWE-94 |
|
| CPEs | cpe:2.3:a:code-projects:assessment_management:*:*:*:*:*:*:*:* | |
| Vendors & Products |
Code-projects
Code-projects assessment Management |
|
| References |
| |
| Metrics |
cvssV2_0
|
Status: PUBLISHED
Assigner: VulDB
Published: 2026-07-04T21:30:08.426Z
Updated: 2026-07-06T16:51:07.971Z
Reserved: 2026-07-03T18:50:27.237Z
Link: CVE-2026-14656
Updated: 2026-07-06T16:46:04.756Z
No data.
No data.