CVE-2026-3745 | code-projects Student Web Portal 1.0 profile.php User sql injection

Inserito da Angelo Barbosa | Mar 7, 2026 | CVE

A vulnerability, which was classified as critical, was found in code-projects Student Web Portal 1.0. Affected is an unknown function of the file profile.php. The manipulation of the argument User results in sql injection.

This vulnerability is reported as CVE-2026-3745. The attack can be launched remotely. Moreover, an exploit is present.

CVE-2026-3745 | code-projects Student Web Portal 1.0 profile.php User sql injection

Post correlati

CVE-2024-49702 | myCred Elementor Plugin up to 1.2.6 on WordPress cross site scripting

CVE-2025-5526 | BuddyPress Docs Plugin up to 2.2.4 on WordPress Download File authorization

CVE-2023-34385 | Akshay Menariya Export Import Menus Plugin up to 1.8.0 on WordPress unrestricted upload

CVE-2024-20073 | MediaTek MT6890/MT7622 SDK version 5.0.5.0/before /OpenWRT 19.07/21.02 WLAN Service out-of-bounds write (WCNCR00367704)