CVE-2026-2223 | code-projects Online Reviewer System 1.0 index.php ID sql injection

Inserito da Angelo Barbosa | Feb 8, 2026 | CVE

A vulnerability was found in code-projects Online Reviewer System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /system/system/students/assessments/pretest/take/index.php. The manipulation of the argument ID leads to sql injection.

This vulnerability is traded as CVE-2026-2223. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2026-2223 | code-projects Online Reviewer System 1.0 index.php ID sql injection

Post correlati

CVE-2025-20166 | Cisco Common Services Platform Collector Software 2.11/2.11.0.1/2.11.0.2/2.11.0.3/30.1.1-0 Interface cross site scripting (cisco-sa-cspc-xss-CDOJZyH)

CVE-2025-1379 | code-projects Real Estate Property Management System 1.0 CustomerReport.php city sql injection

CVE-2023-6532 | WP Blogs Planetarium Plugin up to 1.0 on WordPress Setting cross-site request forgery

CVE-2024-26087 | Adobe Experience Manager up to 6.5.19 Form Field cross site scripting (apsb24-21)