Analysis and contextual insights are available on OpenCVE Cloud.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
No advisories yet.
Sat, 04 Jul 2026 21:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A security vulnerability has been detected in code-projects Assessment Management 1.0. This affects an unknown part of the file /admin/remove-user.php. The manipulation of the argument ID leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed publicly and may be used. | |
| Title | code-projects Assessment Management remove-user.php cross site scripting | |
| First Time appeared |
Code-projects
Code-projects assessment Management |
|
| Weaknesses | CWE-79 CWE-94 |
|
| CPEs | cpe:2.3:a:code-projects:assessment_management:*:*:*:*:*:*:*:* | |
| Vendors & Products |
Code-projects
Code-projects assessment Management |
|
| References |
| |
| Metrics |
cvssV2_0
|
Status: PUBLISHED
Assigner: VulDB
Published:
Updated: 2026-07-04T21:30:08.426Z
Reserved: 2026-07-03T18:50:27.237Z
Link: CVE-2026-14656
No data.
No data.
No data.
OpenCVE Enrichment
No data.