5 matches found
CVE-2026-4842
A security vulnerability has been detected in itsourcecode Online Enrollment System 1.0. This vulnerability affects unknown code of the file /sms/grades/index.php?view=edit=1 of the component Parameter Handler. The manipulation of the argument deptid leads to sql injection. The attack is possible...
CVE-2026-4842
A security vulnerability has been detected in itsourcecode Online Enrollment System 1.0. This vulnerability affects unknown code of the file /sms/grades/index.php?view=edit&id=1 of the component Parameter Handler. The manipulation of the argument deptid leads to sql injection. The attack is...
CVE-2026-4842
The CVE-2026-4842 entry concerns the itsourcecode Online Enrollment System 1.0. It targets the parameter handling code in /sms/grades/index.php?view=edit&id=1, where manipulating deptid enables an SQL injection. The vulnerability is exploitable remotely and publicly disclosed. Affected component:...
CVE-2026-4632
A weakness has been identified in itsourcecode Online Enrollment System 1.0. This vulnerability affects unknown code of the file /sms/user/index.php?view=add of the component Parameter Handler. Executing a manipulation of the argument Name can lead to sql injection. The attack may be performed fr...
CVE-2026-4235
CVE-2026-4235 affects itsourcecode Online Enrollment System 1.0. The vulnerability is an SQL injection in /sms/login.php via the user_email parameter, exploitable remotely over the network (no authentication). The cited exploit is PROOF-OF-CONCEPT. Impact is described in metrics as CONFIDENTIALIT...