CVE-2026-2011 | itsourcecode Student Management System 1.0 controller.php ID sql injection

Inserito da Angelo Barbosa | Feb 5, 2026 | CVE

A vulnerability labeled as critical has been found in itsourcecode Student Management System 1.0. The affected element is an unknown function of the file /ramonsys/enrollment/controller.php. The manipulation of the argument ID results in sql injection.

This vulnerability is reported as CVE-2026-2011. The attack can be launched remotely. Moreover, an exploit is present.

CVE-2026-2011 | itsourcecode Student Management System 1.0 controller.php ID sql injection

Post correlati

CVE-2023-45288 | net-http/x-net-http2 on Go CONTINUATION Frame denial of service

CVE-2024-8722 | Soflyy WP All Import Pro Plugin up to 4.9.7 on WordPress cross site scripting

CVE-2023-6964 | Kadence Gutenberg Blocks Plugin up to 3.1.26 on WordPress server-side request forgery

CVE-2025-45010 | PHPGurukul Park Ticketing Management System 2.0 POST Parameter normal-bwdates-reports-details.php fromdate/todate cross site scripting