CVE-2026-7716 PUBLISHED

A vulnerability was found in code-projects Gym Management System In PHP and Windows NT 1.0. This vulnerability affects unknown code of the file /index.php. Performing a manipulation of the argument day results in sql injection. The attack can be initiated remotely. The exploit has been made public and could be used.

• HSEC (VulDB User) reporter

• VDB-360892 | code-projects Gym Management System In PHP/Windows NT index.php sql injection
• VDB-360892 | CTI Indicators (IOB, IOC, TTP, IOA)
• Submit #807105 | Code-projects Gym Management System In PHP 1.0 SQL injection
• https://github.com/QAp89/CVE/blob/main/SQL1.md
• https://code-projects.org/

• SQL Injection CWE
• Injection CWE