Vulnerabilities

Report: CVE-2026-36235 - iSourcecode Online Student Enrollment System SQL Injection

2026-04-10 0 views admin

CVE ID :CVE-2026-36235 Published : April 10, 2026, 3:16 p.m. | 19 minutes ago Description :A SQL injection vulnerability was found in the scheduleSubList.php file of itsourcecode Online Student Enrollment System v1.0. The reason for this issue is that the 'subjcode' parameter is directly embedded into the SQL query via string interpolation without any sanitization or validation. Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2026-36235

Published

April 10, 2026

Affected Product: php

Impact: SQL injection

🏷️ Tags

report36235isourcecodeonlinestudentenrollmentsysteminjectioncvesql injection

InfinitSec - Latest Cybersecurity, Technology & Gaming News

Report: CVE-2026-36235 - iSourcecode Online Student Enrollment System SQL Injection

CVE Details

🏷️ Tags

More from Vulnerabilities

Report: - WordPress Cerato theme <= 2.2.18 - reflected cross site scripting (xss) vulnerab... CVE-2025-58920

Report: CVE-2025-58913 - WordPress VideoPro theme <= 2.3.8.1 - local file inclusion vulnerability

Report: Update: CVE-2026-33092 - Acronis True Image OEM/MacOS Privilege Escalation

Report: CVE-2026-40217 - LiteLLM Arbitrary Code Execution Vulnerability

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting