top of page
perceptive_background_267k.jpg

A vulnerability was found in code-projects Online Examination System 1.0. Affected by this vulnerability is an unknown functionality of the file /index.php of t…

Published:

25 January 2026 at 23:00:00

Alert date:

26 January 2026 at 16:02:02

Source:

nvd.nist.gov

Click to open the original link from this advisory

Web Technologies

A SQL injection vulnerability (CVE-2026-1422) was discovered in code-projects Online Examination System 1.0. The vulnerability affects the login page functionality in the /index.php file, specifically through manipulation of the User argument. The attack can be carried out remotely and the exploit has been made publicly available, making this a high-risk vulnerability for organizations using this system.

Technical details

Mitigation steps:

Affected products:

Online Examination System

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2026-1422
https://code-projects.org/
https://github.com/geo-chen/code-projects/blob/main/Online%20Examination%20System%20In%20PHP%20With%20Source%20Code.md#finding-2-sql-injection-on-login-page
https://vuldb.com/?ctiid.342838
https://vuldb.com/?id.342838
https://vuldb.com/?submit.736606

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page