8 matches found
CVE-2026-2087
A flaw has been found in SourceCodester Online Class Record System 1.0. Affected by this issue is some unknown functionality of the file /admin/login.php. This manipulation of the argument useremail causes sql injection. The attack may be initiated remotely. The exploit has been published and may...
CVE-2026-2090
A vulnerability was determined in SourceCodester Online Class Record System 1.0. This issue affects some unknown processing of the file /admin/message/search.php. Executing a manipulation of the argument term can lead to sql injection. The attack can be executed remotely. The exploit has been...
CVE-2026-2090 SourceCodester Online Class Record System search.php sql injection
A vulnerability was determined in SourceCodester Online Class Record System 1.0. This issue affects some unknown processing of the file /admin/message/search.php. Executing a manipulation of the argument term can lead to sql injection. The attack can be executed remotely. The exploit has been...
CVE-2026-2090
CVE-2026-2090 affects the SourceCodester Online Class Record System 1.0. The vulnerability resides in the /admin/message/search.php handler, where manipulating the term parameter can lead to a SQL injection. Exploitation is possible remotely and public disclosures exist. Several sources corrobora...
CVE-2026-2089
CVE-2026-2089 affects SourceCodester Online Class Record System 1.0. The vulnerability is a SQL injection in the file /admin/subject/controller.php caused by manipulating the ID argument. Exploitation is remote and the exploit has been published, enabling public use. Red Hat, NVD, and other sourc...
CVE-2026-2087 SourceCodester Online Class Record System login.php sql injection
A flaw has been found in SourceCodester Online Class Record System 1.0. Affected by this issue is some unknown functionality of the file /admin/login.php. This manipulation of the argument useremail causes sql injection. The attack may be initiated remotely. The exploit has been published and may...
CVE-2026-2087
SourceCodester Online Class Record System 1.0 is affected by a SQL injection in /admin/login.php via the user_email parameter. The vulnerability can be triggered remotely and an exploit has been published, with multiple sources noting high risk potential. Affected component is the login handling ...
SourceCodester Online Class Record System SQL注入漏洞
The SourceCodester Online Class Record System is an open-source online classroom recording system developed by SourceCodester. Version 1.0 of the SourceCodester Online Class Record System has a SQL injection vulnerability. This vulnerability arises from incorrect handling of the parameter ID in t...