CVE-2026-5198 in Student Membership System
Сводка (Английский)
A vulnerability was determined in code-projects Student Membership System 1.0. The impacted element is an unknown function of the file /admin/index.php of the component Admin Login. This manipulation of the argument username/password causes sql injection. Remote exploitation of the attack is possible. The exploit has been publicly disclosed and may be utilized.
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
Раскрытие
31.03.2026
Статус
Подтверждённый
Записи
VulDB provides additional information and datapoints for this CVE:
| ИД | Уязвимость | CWE | Экс | Кон | CVE |
|---|---|---|---|---|---|
| 354296 | code-projects Student Membership System Admin Login index.php SQL-инъекция | 89 | Доказательство концепции | Не определено | CVE-2026-5198 |