CVE-2026-5197 | code-projects Student Membership System 1.0 /delete_user.php ID sql injection

Inserito da Angelo Barbosa | Mar 30, 2026 | CVE

A vulnerability labeled as critical has been found in code-projects Student Membership System 1.0. The affected element is an unknown function of the file /delete_user.php. The manipulation of the argument ID results in sql injection.

This vulnerability is cataloged as CVE-2026-5197. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2026-5197 | code-projects Student Membership System 1.0 /delete_user.php ID sql injection

Post correlati

CVE-2023-38657 | GTKWave 3.3.115 LXT2 zlib Block out-of-bounds write (TALOS-2023-1823)

CVE-2025-27316 | hosting.io JPG, PNG Compression and Optimization Plugin up to 1.7.35 on WordPress cross-site request forgery

CVE-2025-22342 | Jens Törnell WP Simple Sitemap Plugin up to 0.2 on WordPress cross-site request forgery

CVE-2024-32124 | Fortinet FortiIsolator up to 2.3.4/2.4.4 HTTP Request access control (FG-IR-24-045)