Lucene search
K

165 matches found

RedhatCVE
RedhatCVE
added 2026/02/23 7:26 a.m.8 views

CVE-2026-2912

A vulnerability was found in code-projects Online Reviewer System 1.0. Impacted is an unknown function of the file /system/system/students/assessments/results/studentresult-view.php. The manipulation of the argument testid results in sql injection. It is possible to launch the attack remotely. Th...

9.8CVSS5.5AI score0.0033EPSS
Exploits1References1
NVD
NVD
added 2026/02/22 4:15 a.m.8 views

CVE-2026-2912

A vulnerability was found in code-projects Online Reviewer System 1.0. Impacted is an unknown function of the file /system/system/students/assessments/results/studentresult-view.php. The manipulation of the argument testid results in sql injection. It is possible to launch the attack remotely. Th...

9.8CVSS0.0033EPSS
Exploits1References5
OSV
OSV
added 2026/02/22 4:15 a.m.8 views

CVE-2026-2912

A vulnerability was found in code-projects Online Reviewer System 1.0. Impacted is an unknown function of the file /system/system/students/assessments/results/studentresult-view.php. The manipulation of the argument testid results in sql injection. It is possible to launch the attack remotely. Th...

9.8CVSS5.7AI score0.0033EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/02/22 3:32 a.m.4 views

CVE-2026-2912 code-projects Online Reviewer System studentresult-view.php sql injection

A vulnerability was found in code-projects Online Reviewer System 1.0. Impacted is an unknown function of the file /system/system/students/assessments/results/studentresult-view.php. The manipulation of the argument testid results in sql injection. It is possible to launch the attack remotely. Th...

7.5CVSS7.2AI score0.0033EPSS
Exploits1References5
Cvelist
Cvelist
added 2026/02/22 3:32 a.m.33 views

CVE-2026-2912 code-projects Online Reviewer System studentresult-view.php sql injection

A vulnerability was found in code-projects Online Reviewer System 1.0. Impacted is an unknown function of the file /system/system/students/assessments/results/studentresult-view.php. The manipulation of the argument testid results in sql injection. It is possible to launch the attack remotely. Th...

7.5CVSS0.0033EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/02/22 3:32 a.m.4 views

CVE-2026-2912

A vulnerability was found in code-projects Online Reviewer System 1.0. Impacted is an unknown function of the file /system/system/students/assessments/results/studentresult-view.php. The manipulation of the argument testid results in sql injection. It is possible to launch the attack remotely. Th...

7.5CVSS5.5AI score0.0033EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2026/02/22 3:32 a.m.19 views

CVE-2026-2912

CVE-2026-2912 affects code-projects Online Reviewer System v1.0. The vulnerability is in /system/system/students/assessments/results/studentresult-view.php, where manipulating the test_id argument triggers SQL injection. Exploitation is remote, and public exploitation has been reported. Multiple ...

9.8CVSS7.2AI score0.0033EPSS
Exploits1References5Affected Software1
CNNVD
CNNVD
added 2026/02/22 12:0 a.m.10 views

Code-Projects Online Reviewer System SQL注入漏洞

The Code-Projects Online Reviewer System is an online review system developed by Code-Projects as open source. Version 1.0 of the Code-Projects Online Reviewer System has a SQL injection vulnerability. This vulnerability arises from incorrect handling of parameters named testid in...

9.8CVSS7.2AI score0.0033EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/02/22 12:0 a.m.15 views

PT-2026-21412

Name of the Vulnerable Software and Affected Versions code-projects Online Reviewer System version 1.0 Description A SQL injection issue exists in code-projects Online Reviewer System 1.0. The issue is located in the file /system/system/students/assessments/results/studentresult-view.php...

9.8CVSS7AI score0.0033EPSS
Exploits1References12
RedhatCVE
RedhatCVE
added 2026/02/10 1:23 p.m.6 views

CVE-2026-2223

A security vulnerability has been detected in code-projects Online Reviewer System 1.0. Affected by this issue is some unknown functionality of the file /system/system/students/assessments/pretest/take/index.php. The manipulation of the argument ID leads to sql injection. It is possible to initia...

9.8CVSS5.5AI score0.00435EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/02/10 7:33 a.m.9 views

CVE-2026-2222

A weakness has been identified in code-projects Online Reviewer System 1.0. Affected by this vulnerability is an unknown functionality of the file /system/system/admins/manage/users/btnfunctions.php. Executing a manipulation of the argument firstname can lead to cross site scripting. The attack m...

4.8CVSS3.7AI score0.00205EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2026/02/10 7:33 a.m.5 views

CVE-2026-2221

A security flaw has been discovered in code-projects Online Reviewer System 1.0. Affected is an unknown function of the file /login/index.php of the component Login. Performing a manipulation of the argument Username results in sql injection. The attack is possible to be carried out remotely. The...

9.8CVSS5.4AI score0.00341EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/02/10 7:33 a.m.5 views

CVE-2026-2220

A vulnerability was identified in code-projects Online Reviewer System 1.0. This impacts an unknown function of the file /system/system/admins/assessments/pretest/btnfunctions.php. Such manipulation of the argument difficultyid leads to sql injection. The attack can be executed remotely. The...

9.8CVSS5.6AI score0.00341EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/02/10 1:23 a.m.10 views

CVE-2026-2199

A security flaw has been discovered in code-projects Online Reviewer System 1.0. The impacted element is an unknown function of the file /reviewer/system/system/admins/manage/users/user-delete.php. Performing a manipulation of the argument ID results in sql injection. The attack can be initiated...

9.8CVSS5.5AI score0.00323EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/02/10 1:23 a.m.6 views

CVE-2026-2195

A vulnerability has been found in code-projects Online Reviewer System 1.0. This vulnerability affects unknown code of the file /system/system/admins/assessments/pretest/questions-view.php. The manipulation of the argument ID leads to sql injection. The attack is possible to be carried out...

9.8CVSS5.5AI score0.00323EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/02/10 1:23 a.m.7 views

CVE-2026-2198

A vulnerability was identified in code-projects Online Reviewer System 1.0. The affected element is an unknown function of the file /system/system/admins/assessments/pretest/loaddata.php. Such manipulation of the argument difficultyid leads to sql injection. It is possible to launch the attack...

9.8CVSS5.6AI score0.00381EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/02/10 1:23 a.m.7 views

CVE-2026-2196

A vulnerability was found in code-projects Online Reviewer System 1.0. This issue affects some unknown processing of the file /system/system/admins/assessments/pretest/exam-update.php. The manipulation of the argument testid results in sql injection. The attack may be performed from remote. The...

9.8CVSS5.4AI score0.00381EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/02/09 7:23 p.m.4 views

CVE-2026-2166

A security vulnerability has been detected in code-projects Online Reviewer System 1.0. The affected element is an unknown function of the file /login/index.php of the component Login. The manipulation of the argument username/password leads to sql injection. The attack is possible to be carried...

9.8CVSS5.4AI score0.00416EPSS
Exploits1References1
OSV
OSV
added 2026/02/09 9:16 a.m.5 views

CVE-2026-2224

A vulnerability was detected in code-projects Online Reviewer System 1.0. This affects an unknown part of the file /system/system/admins/manage/users/btnfunctions.php. The manipulation of the argument firstname results in cross site scripting. It is possible to launch the attack remotely. The...

5.4CVSS4.4AI score0.00193EPSS
Exploits1References5
NVD
NVD
added 2026/02/09 9:16 a.m.19 views

CVE-2026-2224

A vulnerability was detected in code-projects Online Reviewer System 1.0. This affects an unknown part of the file /system/system/admins/manage/users/btnfunctions.php. The manipulation of the argument firstname results in cross site scripting. It is possible to launch the attack remotely. The...

5.4CVSS0.00193EPSS
Exploits1References5
Rows per page
Query Builder