top of page
perceptive_background_267k.jpg

A flaw has been found in raisulislamg4 student_management_system_by_php up to 310d950e09013d5133c6b9210aff9444382d16d1. Impacted is an unknown function of the f…

Published:

31 mei 2026 om 22:00:00

Alert date:

1 juni 2026 om 16:08:13

Source:

nvd.nist.gov

Click to open the original link from this advisory

Web Technologies, Database & Storage

A SQL injection vulnerability has been discovered in raisulislamg4's student_management_system_by_php affecting the delete.php file. The flaw allows remote attackers to manipulate parameters including user_id, course_id, teacher_id, student_id, and application_id to execute SQL injection attacks. The vulnerability affects systems up to commit 310d950e09013d5133c6b9210aff9444382d16d1. An exploit has been publicly published and made available. The project maintainers were notified through an issue report but have not responded. Due to the rolling release model, specific version numbers for affected or patched releases are not available.

Technical details

Mitigation steps:

Affected products:

student_management_system_by_php

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2026-10226
https://github.com/raisulislamg4/student_management_system_by_php/
https://github.com/raisulislamg4/student_management_system_by_php/issues/3
https://vuldb.com/cve/CVE-2026-10226
https://vuldb.com/submit/822786
https://vuldb.com/vuln/367505
https://vuldb.com/vuln/367505/cti

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Deze website toont informatie afkomstig van externe bronnen; Perceptive aanvaardt geen verantwoordelijkheid voor de juistheid, volledigheid of actualiteit van deze informatie.

bottom of page