code-projects Student Membership System SQL Injection Vulnerability (CVE-2026-5195)
A remote SQL injection vulnerability exists in the User Registration Handler component of code-projects Student Membership System 1.0, exploitable through manipulation of input.
A SQL injection vulnerability, identified as CVE-2026-5195, has been discovered in code-projects Student Membership System version 1.0. The vulnerability specifically affects the “User Registration Handler” component. An attacker can remotely exploit this flaw by manipulating input to execute arbitrary SQL queries. This vulnerability could allow an attacker to read, modify, or delete sensitive data within the application’s database. The base CVSS v3.1 score is 7.3, indicating a high severity…
Detection coverage 2
Detect SQL Injection Attempts in User Registration
highDetects suspicious HTTP requests to the User Registration page with potential SQL injection payloads.
Detect SQL Injection via common injection strings
mediumDetects SQL injection attacks by identifying common SQL injection strings in HTTP requests
Detection queries are kept inside the platform. Get full rules →