CVE-2026-2166 | code-projects Online Reviewer System 1.0 Login /login/index.php username/password sql injection

Inserito da Angelo Barbosa | Feb 7, 2026 | CVE

A vulnerability was found in code-projects Online Reviewer System 1.0. It has been classified as critical. The affected element is an unknown function of the file /login/index.php of the component Login. The manipulation of the argument username/password leads to sql injection.

This vulnerability is uniquely identified as CVE-2026-2166. The attack is possible to be carried out remotely. Moreover, an exploit is present.

CVE-2026-2166 | code-projects Online Reviewer System 1.0 Login /login/index.php username/password sql injection

Post correlati

VDB-252693 | Trojan.Win32 BankShot Service Port 1978 stack-based overflow

CVE-2022-48622 | GNOME gdk-pixbuf up to 2.42.10 ANI Decoder io-ani.c gdk_pixbuf_set_option heap-based overflow

CVE-2024-34138 | Adobe Illustrator up to 27.9.4/28.5 null pointer dereference (apsb24-45)

CVE-2023-5691 | ChatBot Plugin up to 2.3.9 on WordPress cross site scripting