CVE-2026-2189 | itsourcecode School Management System 1.0 index.php ay sql injection

Inserito da Angelo Barbosa | Feb 7, 2026 | CVE

A vulnerability, which was classified as critical, has been found in itsourcecode School Management System 1.0. This affects an unknown function of the file /ramonsys/report/index.php. The manipulation of the argument ay leads to sql injection.

This vulnerability is documented as CVE-2026-2189. The attack can be initiated remotely. Additionally, an exploit exists.

CVE-2026-2189 | itsourcecode School Management System 1.0 index.php ay sql injection

Post correlati

CVE-2025-55134 | Agora fall23-Alpha1 editorManager.js day cross site scripting

CVE-2024-37633 | TOTOLINK A3700R 9.1.2u.6165_20211012 setWiFiGuestCfg ssid stack-based overflow

VDB-337856 | Backdoor.Win32.ControlTotal.t credentials storage

CVE-2025-13395 | codehub666 94list up to 5831c8240e99a72b7d3508c79ef46ae4b96befe8 /function.php login sql injection (Issue 63)