CVE-2026-5041 in code-projects Chamber of Commerce Membership Management System
Summary
A vulnerability was identified in code-projects Chamber of Commerce Membership Management System 1.0. Impacted is the function fwrite of the file admin/pageMail.php. The manipulation of the argument mailSubject/mailMessage leads to command injection. The attack may be initiated remotely. The exploit is publicly available and might be used.
Disclosure
03/29/2026
Entries
| Published | Base | Temp | Vulnerability | CWE | Prod | Exp | Cou | EPSS | CTI | CVE |
|---|---|---|---|---|---|---|---|---|---|---|
| 03/27/2026 | 4.7 | 4.3 | code-projects Chamber of Commerce Membership Management System pageMail.php fwrite command injection | 77 | Project Management Software | Proof-of-Concept | Not defined | 0.00234 | 2.14 | CVE-2026-5041 |