CVE-2026-4632 | itsourcecode Online Enrollment System 1.0 Parameter index.php?view=add Name sql injection

Inserito da Angelo Barbosa | Mar 23, 2026 | CVE

A vulnerability was found in itsourcecode Online Enrollment System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /sms/user/index.php?view=add of the component Parameter Handler. Executing a manipulation of the argument Name can lead to sql injection.

This vulnerability appears as CVE-2026-4632. The attack may be performed from remote. In addition, an exploit is available.

CVE-2026-4632 | itsourcecode Online Enrollment System 1.0 Parameter index.php?view=add Name sql injection

Post correlati

CVE-2025-12914 | aaPanel BaoTa up to 11.1.0 Backend database?action=GetDatabaseAccess Name sql injection

CVE-2024-56963 | Beijing Sogou Technology Development Sogou Input 12.2.0 on iOS Link information disclosure

CVE-2024-49318 | Scott Olson My Reading Library Plugin up to 1.0 on WordPress deserialization

CVE-2023-52145 | Marios Alexandrou Republish Old Posts Plugin up to 1.21 on WordPress cross-site request forgery