CVE-2026-2089 | SourceCodester Online Class Record System 1.0 controller.php ID sql injection

Inserito da Angelo Barbosa | Feb 6, 2026 | CVE

A vulnerability has been found in SourceCodester Online Class Record System 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/subject/controller.php. Performing a manipulation of the argument ID results in sql injection.

This vulnerability is known as CVE-2026-2089. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

CVE-2026-2089 | SourceCodester Online Class Record System 1.0 controller.php ID sql injection

Post correlati

CVE-2024-37571 | SAS Broker 9.2 Build 1495 _debug denial of service

CVE-2024-9858 | Google Cloud Migrate to Containers up to 1.2.2 default permission

CVE-2024-42469 | openhab-webui up to 4.2.0 path traversal (GHSA-f729-58×4-gqgf)

CVE-2024-34089 | Archer Platform prior 2024.04 Trusted Application Data Store cross site scripting