CVE-2026-2171 | code-projects Online Student Management System 1.0 Login accounts.php username/password sql injection

Inserito da Angelo Barbosa | Feb 7, 2026 | CVE

A vulnerability identified as critical has been detected in code-projects Online Student Management System 1.0. Affected is an unknown function of the file accounts.php of the component Login. Performing a manipulation of the argument username/password results in sql injection.

This vulnerability is identified as CVE-2026-2171. The attack can be initiated remotely. Additionally, an exploit exists.

CVE-2026-2171 | code-projects Online Student Management System 1.0 Login accounts.php username/password sql injection

Post correlati

CVE-2023-50268 | jq = 1.7 decNumber buffer overflow (GHSA-7hmr-442f-qc8j)

CVE-2024-44949 | Linux Kernel up to 6.6.45/6.10.4 parisc arch_slab_minalign memory corruption (642a0b7453da/533de2f470ba/7ae04ba36b38)

CVE-2024-20072 | MediaTek MT6890/MT6990/MT7622 WLAN Driver out-of-bounds write (WCNCR00364732)

CVE-2024-48311 | Piwigo 14.5.0 Edit Album cross-site request forgery