Skip to content
Threat Feed
high advisory

itsourcecode Student Transcript Processing System SQL Injection Vulnerability (CVE-2026-9573)

CVE-2026-9573 is a SQL injection vulnerability in itsourcecode Student Transcript Processing System 1.0, allowing a remote attacker to execute arbitrary SQL commands by manipulating the studentId parameter in the /admin/modules/student/index.php?view=view file.

A SQL injection vulnerability, CVE-2026-9573, exists within itsourcecode Student Transcript Processing System version 1.0. This flaw allows a remote attacker to inject malicious SQL code by manipulating the studentId parameter in the /admin/modules/student/index.php?view=view file. The vulnerability is now public and may be exploited. Successful exploitation could allow unauthorized data access, modification, or deletion within the application’s database. The CVSS v3.1 base score for this vulnerability is 7.3, indicating a high severity.

Attack Chain

  1. The attacker identifies the vulnerable endpoint: /admin/modules/student/index.php?view=view.
  2. The attacker crafts a malicious HTTP GET request targeting the studentId parameter.
  3. The malicious request includes SQL injection payloads within the studentId parameter. Example: studentId=1' OR '1'='1.
  4. The application fails to properly sanitize or validate the input provided in the studentId parameter.
  5. The unsanitized input is passed directly into a SQL query executed by the application.
  6. The injected SQL code modifies the intended SQL query, allowing the attacker to bypass authentication or access restricted data.
  7. The database server executes the attacker-controlled SQL query.
  8. The attacker gains unauthorized access to sensitive student information or performs unauthorized database operations (e.g., data exfiltration, modification, or deletion).

Impact

Successful exploitation of this vulnerability could lead to unauthorized access to sensitive student data, including personally identifiable information (PII), academic records, and financial information. An attacker could potentially modify or delete student transcripts, leading to inaccurate academic records. The vulnerability is remotely exploitable, increasing the risk of widespread attacks.

Recommendation

  • Apply input validation and sanitization to the studentId parameter in the /admin/modules/student/index.php?view=view file to prevent SQL injection attacks.
  • Deploy the Sigma rule “Detect CVE-2026-9573 Exploitation Attempt via SQL Injection” to detect attempts to exploit this vulnerability.
  • Consider using parameterized queries or prepared statements to prevent SQL injection.
  • Ensure the itsourcecode Student Transcript Processing System is updated to the latest version with appropriate security patches, if available.

Detection coverage 2

Detect CVE-2026-9573 Exploitation Attempt via SQL Injection

high

Detects CVE-2026-9573 exploitation attempt — SQL injection in studentId parameter.

sigma tactics: initial_access techniques: T1190 sources: webserver

Detect Suspicious Characters in URI Query for Student Transcript Processing System

medium

Detects potential SQL injection attempts by looking for suspicious characters in the URI query of requests to Student Transcript Processing System.

sigma tactics: initial_access techniques: T1190 sources: webserver

Detection queries are available on the platform. Get full rules →