SQL Injection Vulnerability in Student Membership System by Code-Projects
CVE-2026-5195

6.9MEDIUM

Key Information:

Vendor

Code-projects

Status
Student Membership System
Vendor
CVE Published:
31 March 2026

What is CVE-2026-5195?

An SQL injection vulnerability has been identified in the User Registration Handler of the Student Membership System version 1.0 by Code-Projects. This flaw permits remote attackers to manipulate SQL queries, leading to potential unauthorized access to the database. Exploiting this vulnerability requires minimal permissions and can result in severe data breaches affecting user information and application integrity.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Student Membership System 1.0

References

https://vuldb.com/vuln/354293
vdb-entry
https://vuldb.com/vuln/354293/cti
signaturepermissions-required
https://vuldb.com/submit/780398
third-party-advisory

CVSS V4

Score:
6.9
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

nomath (VulDB User)
JSON
.