PT-2026-43387 · Itsourcecode · Student Transcript Processing System

Baiqiuran

Publicado

2026-05-26

Atualizado

2026-05-26

CVE-2026-9573

CVSS v2.0

7.5

Alta

Vetor

AV:N/AC:L/Au:N/C:P/I:P/A:P

A vulnerability was detected in itsourcecode Student Transcript Processing System 1.0. This affects an unknown part of the file /admin/modules/student/index.php?view=view. Performing a manipulation of the argument studentId results in sql injection. The attack can be initiated remotely. The exploit is now public and may be used.

Exploit

Correção

Special Elements Injection

SQL injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-74CWE-89

Identificadores relacionados

CVE-2026-9573

Produtos afetados

Student Transcript Processing System

PT-2026-43387 · Itsourcecode · Student Transcript Processing System

CVE-2026-9573

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6