CNNVD-202602-1104 Information

Feb 07, 2026 cve

CNNVD ID

CNNVD-202602-1104

CVE-2026-2090

CNNVD Published: 2026-02-07

Description (Chinese)

SourceCodester Online Class Record System是SourceCodester开源的一个在线课堂记录系统。 SourceCodester Online Class Record System 1.0版本存在SQL注入漏洞，该漏洞源于对文件/admin/message/search.php中参数term的错误操作，可能导致SQL注入。

Description (English)

SourceCodester Online Class Lord System is an online classroom recording system open to SourceCodester. SourceCodester OnlineClass Reform System Version 1.0 has an injection loophole in SQL, which results from the error of the term in the file/admin/message/search.php, which may result in SQL injection.

Hazard Level

Medium

Vulnerability Type

SQL注入

Affected Vendor

SourceCodester

Published

2026-02-07

Last Modified

2026-02-24

References

https://github.com/xiaoccm07/cve/issues/3 https://vuldb.com/?ctiid.344657 https://vuldb.com/?id.344657 https://vuldb.com/?submit.746551 https://www.sourcecodester.com/ https://access.redhat.com/security/cve/cve-2026-2090

Share on: