CVE-2026-3134 | itsourcecode News Portal Project 1.0 edit-category.php Category sql injection

Inserito da Angelo Barbosa | Feb 24, 2026 | CVE

A vulnerability categorized as critical has been discovered in itsourcecode News Portal Project 1.0. The affected element is an unknown function of the file /newsportal/admin/edit-category.php. The manipulation of the argument Category results in sql injection.

This vulnerability was named CVE-2026-3134. The attack may be performed from remote. In addition, an exploit is available.

CVE-2026-3134 | itsourcecode News Portal Project 1.0 edit-category.php Category sql injection

Post correlati

CVE-2023-54197 | Linux Kernel up to 6.3.1 btsdio btsdio_remove use after free

CVE-2024-3351 | SourceCodester Aplaya Beach Resort Online Reservation System 1.0 index.php id sql injection

CVE-2024-45751 | tgt up to 1.0.92 entropy

CVE-2024-42370 | litestar up to 2.10.0 Environment Variable docs-preview.yml DOCS_PREVIEW_DEPLOY_TOKEN os command injection (GHSA-4hq2-rpgc-r8r7)