A vulnerability was detected in code-projects Assessment Management 1.0. This vulnerability affects unknown code of the file /lecturer/marking-scheme.php. The manipulation of the argument smarksrange[] results in sql injection. It is possible to launch the attack remotely. The exploit is now public and may be used.
Metrics
Affected Vendors & Products
References
History
Sat, 04 Jul 2026 22:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A vulnerability was detected in code-projects Assessment Management 1.0. This vulnerability affects unknown code of the file /lecturer/marking-scheme.php. The manipulation of the argument smarksrange[] results in sql injection. It is possible to launch the attack remotely. The exploit is now public and may be used. | |
| Title | code-projects Assessment Management marking-scheme.php sql injection | |
| First Time appeared |
Code-projects
Code-projects assessment Management |
|
| Weaknesses | CWE-74 CWE-89 |
|
| CPEs | cpe:2.3:a:code-projects:assessment_management:*:*:*:*:*:*:*:* | |
| Vendors & Products |
Code-projects
Code-projects assessment Management |
|
| References |
| |
| Metrics |
cvssV2_0
|
Status: PUBLISHED
Assigner: VulDB
Published:
Updated: 2026-07-04T22:00:09.063Z
Reserved: 2026-07-03T18:50:32.861Z
Link: CVE-2026-14658
No data.
No data.
No data.
OpenCVE Enrichment
Updated: 2026-07-05T07:45:03Z