Itsourcecode · Itsourcecode Online Student Enrollment System · CVE-2026-5534
Name of the Vulnerable Software and Affected Versions
itsourcecode Online Enrollment System version 1.0
Description
A SQL injection issue exists in itsourcecode Online Enrollment System version 1.0. Manipulation of the `USERID` argument in the file '/sms/user/index.php?view=edit&id=10' can lead to SQL injection. The attack can be executed remotely.
Recommendations
Update to a newer version that contains a fix for this vulnerability.