CVE-2026-4842 | itsourcecode Online Enrollment System 1.0 Parameter index.php?view=edit&id=1 deptid sql injection

Inserito da Angelo Barbosa | Mar 25, 2026 | CVE

A vulnerability marked as critical has been reported in itsourcecode Online Enrollment System 1.0. This vulnerability affects unknown code of the file /sms/grades/index.php?view=edit&id=1 of the component Parameter Handler. The manipulation of the argument deptid leads to sql injection.

This vulnerability is uniquely identified as CVE-2026-4842. The attack is possible to be carried out remotely. Moreover, an exploit is present.

CVE-2026-4842 | itsourcecode Online Enrollment System 1.0 Parameter index.php?view=edit&id=1 deptid sql injection

Post correlati

CVE-2025-13057 | Campcodes School Fees Payment Management System 1.0 ajax.php?action=save_student ID sql injection

CVE-2024-21920 | Rockwell Automation Arena Simulation up to 16.20.02 out-of-bounds

CVE-2024-5031 | Memberpress Plugin up to 1.11.29 on WordPress Shortcode mepr-user-file server-side request forgery

Mozilla Thunderbird ReadableByteStreams use after free