CVE-2026-2912 | code-projects Online Reviewer System 1.0 studentresult-view.php test_id sql injection

Inserito da Angelo Barbosa | Feb 20, 2026 | CVE

A vulnerability was found in code-projects Online Reviewer System 1.0. It has been declared as critical. Impacted is an unknown function of the file /system/system/students/assessments/results/studentresult-view.php. The manipulation of the argument test_id results in sql injection.

This vulnerability is known as CVE-2026-2912. It is possible to launch the attack remotely. Furthermore, an exploit is available.

CVE-2026-2912 | code-projects Online Reviewer System 1.0 studentresult-view.php test_id sql injection

Post correlati

CVE-2024-24442 | OpenAirInterface CN5G AMF up to 2.0.0 NGAP Message ngap_app::handle_receive null pointer dereference

CVE-2024-4190 | OpenText ArcSight Logger up to 7.3.0 P3 cross site scripting

CVE-2024-22920 | SWFTools 0.9.2 compile.c bufferWriteData use after free

CVE-2023-7170 | EventON-RSVP Plugin up to 2.9.4 on WordPress cross site scripting