A vulnerability was found in code-projects Online Job Portal 1.0. It has been rated as critical. The affected element is an unknown function of the file login.php. Performing a manipulation of the argument txtUser/txtPass results in sql injection.

This vulnerability was named CVE-2026-14660. The attack may be initiated remotely. In addition, an exploit is available.