Simple Student Alumni System

5 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2026-26696 CRITICAL POC Act Now

Simple Student Alumni System v1.0 has a third SQL injection.

PHP SQLi Simple Student Alumni System
NVD GitHub
CVSS 3.1
9.8
EPSS
0.0%
CVE-2026-26695 CRITICAL POC Act Now

Simple Student Alumni System v1.0 has SQL injection in record_search.php.

PHP SQLi Simple Student Alumni System
NVD GitHub
CVSS 3.1
9.8
EPSS
0.0%
CVE-2026-26694 CRITICAL POC Act Now

Simple Student Alumni System v1.0 has SQL injection in modal_view.php.

PHP SQLi Simple Student Alumni System
NVD GitHub
CVSS 3.1
9.8
EPSS
0.0%
CVE-2026-26698 MEDIUM POC This Month

SQL injection in Simple Student Alumni System v1.0's modal_edit.php endpoint allows authenticated administrators to extract sensitive database information through unauthenticated network requests. Public exploit code exists for this vulnerability, though no patch is currently available. The attack requires high-level privileges but can bypass intended access controls to read confidential data.

PHP SQLi Simple Student Alumni System
NVD GitHub
CVSS 3.1
4.9
EPSS
0.0%
CVE-2026-26697 MEDIUM POC This Month

Simple Student Alumni System v1.0 contains a SQL injection vulnerability in the recordteacher_view.php endpoint that allows authenticated administrators to extract sensitive data from the underlying database. Public exploit code exists for this vulnerability, though a patch is currently unavailable. The attack requires high-level administrative privileges but can be executed remotely without user interaction.

PHP SQLi Simple Student Alumni System
NVD GitHub
CVSS 3.1
4.9
EPSS
0.0%
CVE-2026-26696
EPSS 0% CVSS 9.8
CRITICAL POC Act Now

Simple Student Alumni System v1.0 has a third SQL injection.

PHP SQLi Simple Student Alumni System
NVD GitHub
CVE-2026-26695
EPSS 0% CVSS 9.8
CRITICAL POC Act Now

Simple Student Alumni System v1.0 has SQL injection in record_search.php.

PHP SQLi Simple Student Alumni System
NVD GitHub
CVE-2026-26694
EPSS 0% CVSS 9.8
CRITICAL POC Act Now

Simple Student Alumni System v1.0 has SQL injection in modal_view.php.

PHP SQLi Simple Student Alumni System
NVD GitHub
CVE-2026-26698
EPSS 0% CVSS 4.9
MEDIUM POC This Month

SQL injection in Simple Student Alumni System v1.0's modal_edit.php endpoint allows authenticated administrators to extract sensitive database information through unauthenticated network requests. Public exploit code exists for this vulnerability, though no patch is currently available. The attack requires high-level privileges but can bypass intended access controls to read confidential data.

PHP SQLi Simple Student Alumni System
NVD GitHub
CVE-2026-26697
EPSS 0% CVSS 4.9
MEDIUM POC This Month

Simple Student Alumni System v1.0 contains a SQL injection vulnerability in the recordteacher_view.php endpoint that allows authenticated administrators to extract sensitive data from the underlying database. Public exploit code exists for this vulnerability, though a patch is currently unavailable. The attack requires high-level administrative privileges but can be executed remotely without user interaction.

PHP SQLi Simple Student Alumni System
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy