Back to Explorer

CVE-2026-0544

PUBLISHED
1/1/2026 1af790b2-7ee1-4545-860a-a788eba489b5

Technical Description

A security flaw has been discovered in itsourcecode School Management System 1.0. This affects an unknown part of the file /student/index.php. The manipulation of the argument ID results in sql injection. It is possible to launch the attack remotely. The exploit has been released to the public and may be used for attacks.

Affected Products

itsourcecode
School Management System
1.0

References

https://vuldb.com/?id.339331
VDB-339331 | itsourcecode School Management System index.php sql injection
https://vuldb.com/?ctiid.339331
VDB-339331 | CTI Indicators (IOB, IOC, TTP, IOA)
https://vuldb.com/?submit.728909
Submit #728909 | itsourcecode School Management System V1.0 SQL Injection
https://github.com/ltranquility/CVE/issues/31
External Link
https://itsourcecode.com/
External Link

Impact Analysis

Attack Vector Network
Attack Complexity Low
Privileges Required None