3 matches found
CVE-2026-2158
CVE-2026-2158 affects code-projects Student Web Portal 1.0. The vulnerability is in an unknown function within the file /check_user.php where manipulation of the Username argument enables remote SQL injection. This has been consistently described across multiple sources (NVD, Red Hat, CNNVD, etc....
CVE-2026-3745
CVE-2026-3745 affects code-projects’ Student Web Portal 1.0. An unknown function in profile.php allows manipulation of the User argument, resulting in an SQL injection. The vulnerability is remotely exploitable and, per the sources, the exploit has been publicly disclosed. Affected impact is desc...
CVE-2026-3744
CVE-2026-3744 affects code-projects Student Web Portal 1.0. The vulnerability is in the function valreg_passwdation of signup.php, where the reg_passwd argument can be manipulated to trigger a SQL injection. It is a remote, publicly disclosed exploit (PoC present in multiple sources). The issue i...