CVE-2026-5035 in code-projects Accounting System
Résumé (Anglaise)
A vulnerability has been found in code-projects Accounting System 1.0. This affects an unknown part of the file /view_work.php of the component Parameter Handler. Such manipulation of the argument en_id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
Divulgation
29/03/2026
Entrées
| ID | Vulnérabilité | CWE | Base | Temp | 0day | Aujourd'hui | Exp | KEV | EPSS | CTI | Con | CVE |
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 353961 | code-projects Accounting System Parameter view_work.php injection SQL | 89 | 7.3 | 6.6 | $0-$5k | $0-$5k | Preuve de concept | 0.00030 | 2.18 | Non défini | CVE-2026-5035 |