CVE Catalog

CVE-2026-9574

High
Published: Translated: NVD NIST

Summary

A flaw has been found in itsourcecode Student Transcript Processing System 1.0, affecting unknown code in the file /admin/modules/student/trans.php. Manipulating the argument studentId/cid can lead to SQL injection.

Risk Assessment

An attacker can remotely exploit this vulnerability, posing a serious threat to the integrity of the database and the confidentiality of student data.

Recommendation

It is recommended to immediately update the system to the latest version and implement input data filtering to prevent SQL injection.

Original NVD description (English source)

A flaw has been found in itsourcecode Student Transcript Processing System 1.0. This vulnerability affects unknown code of the file /admin/modules/student/trans.php. Executing a manipulation of the argument studentId/cid can lead to sql injection. The attack can be launched remotely. The exploit has been published and may be used.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS