CVE-2026-26697

Name of the Vulnerable Software and Affected Versions Simple Student Alumni System version 1.0

Description The Simple Student Alumni System is susceptible to SQL Injection. This issue affects the /TracerStudy/recordteacher view.php script when handling the teacherID parameter. Exploitation may allow an attacker to manipulate database queries, potentially leading to unauthorized access, data modification, or system compromise.

Recommendations Apply appropriate input validation and sanitization techniques to the teacherID parameter in the /TracerStudy/recordteacher view.php script. Consider using parameterized queries or prepared statements to prevent SQL Injection attacks.