CVE-2026-2090 | SourceCodester Online Class Record System 1.0 search.php term sql injection

Inserito da Angelo Barbosa | Feb 6, 2026 | CVE

A vulnerability was found in SourceCodester Online Class Record System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/message/search.php. Executing a manipulation of the argument term can lead to sql injection.

This vulnerability is handled as CVE-2026-2090. The attack can be executed remotely. Additionally, an exploit exists.

CVE-2026-2090 | SourceCodester Online Class Record System 1.0 search.php term sql injection

Post correlati

CVE-2023-50913 | Oxide Control Plane Software up to 4 server-side request forgery

CVE-2025-4764 | Aida Computer Information Hotel Guest Hotspot up to 22012026 sql injection

CVE-2025-40834 | Siemens Mendix RichText up to 4.6.0 Widget cross site scripting (ssa-190588)

CVE-2025-1470 | Eclipse OMR up to 0.4.0 null pointer dereference (ID 54)