CVE-2026-5534 | itsourcecode Online Enrollment System 1.0 Parameter index.php?view=edit&id=10 USERID sql injection

Inserito da Angelo Barbosa | Apr 4, 2026 | CVE

A vulnerability categorized as critical has been discovered in itsourcecode Online Enrollment System 1.0. This affects an unknown function of the file /sms/user/index.php?view=edit&id=10 of the component Parameter Handler. Such manipulation of the argument USERID leads to sql injection.

This vulnerability is documented as CVE-2026-5534. The attack can be executed remotely. Additionally, an exploit exists.

CVE-2026-5534 | itsourcecode Online Enrollment System 1.0 Parameter index.php?view=edit&id=10 USERID sql injection

Post correlati

CVE-2025-7759 | thinkgem JeeSite up to 5.12.0 UEditor Image Grabber ActionEnter.java Source server-side request forgery (Issue 27)

CVE-2025-22301 | Stormhill Media MyBookTable Bookstore Plugin up to 3.5.3 on WordPress cross-site request forgery

CVE-2020-9085 | Huawei 4G Router B612 POST Message null pointer dereference (huawei-sa-20200826-01)

CVE-2024-7617 | Contact Form to Any API Plugin up to 1.2.2 on WordPress cross site scripting