CVE-2026-2912 – code-projects Online Reviewer System studentresult-view.php sql injection

CVE ID : CVE-2026-2912

Published : Feb. 22, 2026, 4:15 a.m. | 49 minutes ago

Description : A vulnerability was found in code-projects Online Reviewer System 1.0. Impacted is an unknown function of the file /system/system/students/assessments/results/studentresult-view.php. The manipulation of the argument test_id results in sql injection. It is possible to launch the attack remotely. The exploit has been made public and could be used.

Severity: 7.5 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-2929 – D-Link DWR-M960 Wireless Access Control Endpoint formWlAc sub_453140 stack-based overflow

CVE-2026-1369 – Conditional CAPTCHA

CVE-2026-2930 – Tenda A18 Httpd Service UploadCfg webCgiGetUploadFile stack-based overflow

CVE-2026-2928 – D-Link DWR-M960 WLAN Encryption Configuration Endpoint formWlEncrypt sub_452CCC stack-based overflow