CVE-2026-0728
SQL Injection in Intern Membership Management System Admin Module
Publication date: 2026-01-08
Last updated on: 2026-04-29
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| code-projects | intern_membership_management_system | 1.0 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-74 | The product constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component. |
| CWE-89 | The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data. |
Attack-Flow Graph
AI Powered Q&A
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
The vulnerability allows unauthorized SQL injection attacks that can lead to unauthorized access to sensitive data, impacting the confidentiality, integrity, and availability of the system. Such a compromise of sensitive data could result in non-compliance with data protection regulations like GDPR and HIPAA, which require safeguarding personal and sensitive information against unauthorized access. Therefore, this vulnerability poses a risk to compliance with these common standards and regulations. [1, 2]
Can you explain this vulnerability to me?
CVE-2026-0728 is a SQL injection vulnerability in version 1.0 of the Intern Membership Management System, specifically in the file /intern/admin/delete_admin.php. The vulnerability occurs because the admin_id parameter is not properly sanitized before being used in SQL queries, allowing an attacker to inject malicious SQL code. This can be exploited remotely and requires some level of authentication. The flaw allows unauthorized manipulation of the database through crafted input. [1, 2]
How can this vulnerability impact me? :
This vulnerability can impact you by compromising the confidentiality, integrity, and availability of your system. An attacker exploiting this SQL injection flaw could access sensitive data, modify or delete data, and potentially disrupt system operations. Since the vulnerability is remotely exploitable, it poses a risk of unauthorized access and data breaches. [1, 2]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability can be detected by identifying requests to the vulnerable file `/intern/admin/delete_admin.php` with manipulated `admin_id` parameters that may indicate SQL injection attempts. One suggested method is using Google Hacking with queries like `inurl:intern/admin/delete_admin.php` to find potentially vulnerable targets. On your system or network, monitoring HTTP requests for unusual or malicious input in the `admin_id` parameter can help detect exploitation attempts. Specific commands are not provided, but searching logs for access to `/intern/admin/delete_admin.php` with suspicious parameters is recommended. [2]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include replacing the affected component with an alternative product, as no known countermeasures or mitigations have been identified. Additionally, restricting access to the vulnerable script `/intern/admin/delete_admin.php` and monitoring for suspicious activity may help reduce risk until a fix or replacement is implemented. [2]