{"description":"Trending threats, MITRE ATT\u0026CK coverage, and detection metadata. Fed continuously.","feed_url":"https://feed.craftedsignal.io/products/student_management_system_by_php/feed.json","home_page_url":"https://feed.craftedsignal.io/","items":[{"_cs_actors":[],"_cs_cpes":[],"_cs_cves":[{"cvss":7.3,"id":"CVE-2026-10226"}],"_cs_exploited":false,"_cs_has_poc":false,"_cs_poc_references":[],"_cs_products":["student_management_system_by_php"],"_cs_severities":["high"],"_cs_tags":["sql-injection","web-application","cve-2026-10226"],"_cs_type":"advisory","_cs_vendors":[],"content_html":"\u003cp\u003eA SQL injection vulnerability, identified as CVE-2026-10226, has been discovered in the raisulislamg4 student_management_system_by_php. This vulnerability affects versions up to 310d950e09013d5133c6b9210aff9444382d16d1. The flaw resides within the delete.php file and can be exploited by remotely manipulating the user_id, course_id, teacher_id, student_id, or application_id parameters. The vulnerability has been publicly disclosed and a proof-of-concept exploit is available, increasing the risk of exploitation. The vendor was notified but has not responded. This poses a significant risk to organizations using the affected student management system.\u003c/p\u003e\n\u003ch2 id=\"attack-chain\"\u003eAttack Chain\u003c/h2\u003e\n\u003col\u003e\n\u003cli\u003eAn attacker identifies a vulnerable instance of student_management_system_by_php running a version up to 310d950e09013d5133c6b9210aff9444382d16d1.\u003c/li\u003e\n\u003cli\u003eThe attacker crafts a malicious HTTP request targeting the \u003ccode\u003edelete.php\u003c/code\u003e endpoint.\u003c/li\u003e\n\u003cli\u003eThe attacker injects SQL code into one or more of the following parameters: \u003ccode\u003euser_id\u003c/code\u003e, \u003ccode\u003ecourse_id\u003c/code\u003e, \u003ccode\u003eteacher_id\u003c/code\u003e, \u003ccode\u003estudent_id\u003c/code\u003e, or \u003ccode\u003eapplication_id\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eThe web server processes the \u003ccode\u003edelete.php\u003c/code\u003e script, passing the attacker-controlled input to a vulnerable SQL query without proper sanitization.\u003c/li\u003e\n\u003cli\u003eThe injected SQL code modifies the query\u0026rsquo;s behavior, potentially allowing the attacker to bypass authentication or access sensitive data.\u003c/li\u003e\n\u003cli\u003eThe database server executes the modified SQL query, performing actions unintended by the application developer.\u003c/li\u003e\n\u003cli\u003eThe attacker gains unauthorized access to sensitive information stored in the database.\u003c/li\u003e\n\u003cli\u003eThe attacker may be able to further escalate the attack, potentially gaining complete control over the database server or the web application.\u003c/li\u003e\n\u003c/ol\u003e\n\u003ch2 id=\"impact\"\u003eImpact\u003c/h2\u003e\n\u003cp\u003eSuccessful exploitation of this SQL injection vulnerability (CVE-2026-10226) can lead to unauthorized access to sensitive student data, including personally identifiable information (PII), academic records, and financial information. This could result in data breaches, identity theft, and financial losses for both the institution and its students. The impact can range from defacement of the application to complete compromise of the underlying database server.\u003c/p\u003e\n\u003ch2 id=\"recommendation\"\u003eRecommendation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eInspect web server logs for suspicious requests to \u003ccode\u003edelete.php\u003c/code\u003e with potentially malicious characters in the \u003ccode\u003euser_id\u003c/code\u003e, \u003ccode\u003ecourse_id\u003c/code\u003e, \u003ccode\u003eteacher_id\u003c/code\u003e, \u003ccode\u003estudent_id\u003c/code\u003e, and \u003ccode\u003eapplication_id\u003c/code\u003e parameters, as described in the overview. Implement the Sigma rule \u003ccode\u003eDetect SQL Injection Attempt in student_management_system_by_php delete.php\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eApply input validation and sanitization to all user-supplied data, especially in the \u003ccode\u003edelete.php\u003c/code\u003e script, to prevent SQL injection attacks.\u003c/li\u003e\n\u003cli\u003eConsider using parameterized queries or stored procedures to prevent SQL injection vulnerabilities within the application.\u003c/li\u003e\n\u003cli\u003eMonitor database logs for anomalous activity that could indicate successful SQL injection attempts.\u003c/li\u003e\n\u003cli\u003eSince there are no version details available, any deployment of student_management_system_by_php should be considered vulnerable.\u003c/li\u003e\n\u003c/ul\u003e\n","date_modified":"2026-06-01T06:17:56Z","date_published":"2026-06-01T06:17:56Z","id":"https://feed.craftedsignal.io/briefs/2026-06-student-management-sql-injection/","summary":"A SQL injection vulnerability (CVE-2026-10226) exists in student_management_system_by_php up to version 310d950e09013d5133c6b9210aff9444382d16d1, allowing remote attackers to execute arbitrary SQL commands by manipulating specific parameters in the delete.php file.","title":"SQL Injection Vulnerability in student_management_system_by_php (CVE-2026-10226)","url":"https://feed.craftedsignal.io/briefs/2026-06-student-management-sql-injection/"},{"_cs_actors":[],"_cs_cpes":[],"_cs_cves":[{"cvss":7.3,"id":"CVE-2026-10225"}],"_cs_exploited":true,"_cs_has_poc":false,"_cs_poc_references":[],"_cs_products":["student_management_system_by_php"],"_cs_severities":["high"],"_cs_tags":["sql-injection","vulnerability","web-application"],"_cs_type":"threat","_cs_vendors":[],"content_html":"\u003cp\u003eA SQL injection vulnerability, identified as CVE-2026-10225, has been discovered in the raisulislamg4 student_management_system_by_php. This vulnerability affects versions up to commit 310d950e09013d5133c6b9210aff9444382d16d1. The vulnerability is located within the login_check.php file, specifically in the Login component, where the Username argument is susceptible to SQL injection. A remote attacker can exploit this vulnerability to execute arbitrary SQL commands on the system. The exploit is now public, increasing the risk of active exploitation. The project was notified but has not responded, and due to the rolling release model, specific affected versions are not available.\u003c/p\u003e\n\u003ch2 id=\"attack-chain\"\u003eAttack Chain\u003c/h2\u003e\n\u003col\u003e\n\u003cli\u003eThe attacker identifies a student_management_system_by_php instance running a vulnerable version.\u003c/li\u003e\n\u003cli\u003eThe attacker crafts a malicious HTTP request targeting the login_check.php file.\u003c/li\u003e\n\u003cli\u003eThe request includes a manipulated \u0026lsquo;Username\u0026rsquo; parameter containing SQL injection payloads (e.g., \u003ccode\u003eadmin' OR '1'='1'--\u003c/code\u003e).\u003c/li\u003e\n\u003cli\u003eThe vulnerable login_check.php script processes the crafted \u0026lsquo;Username\u0026rsquo; parameter without proper sanitization.\u003c/li\u003e\n\u003cli\u003eThe unsanitized input is incorporated into a SQL query executed against the database.\u003c/li\u003e\n\u003cli\u003eThe injected SQL code manipulates the query logic, potentially bypassing authentication.\u003c/li\u003e\n\u003cli\u003eThe attacker gains unauthorized access to the system with elevated privileges.\u003c/li\u003e\n\u003cli\u003eThe attacker may then proceed to exfiltrate sensitive data, modify database records, or escalate privileges further to compromise the entire system.\u003c/li\u003e\n\u003c/ol\u003e\n\u003ch2 id=\"impact\"\u003eImpact\u003c/h2\u003e\n\u003cp\u003eSuccessful exploitation of this SQL injection vulnerability (CVE-2026-10225) allows a remote attacker to execute arbitrary SQL commands. This can lead to unauthorized access to sensitive student data, modification or deletion of records, and complete compromise of the database server. Given that the exploit is public, student_management_system_by_php installations are at high risk of being targeted. The lack of a timely patch exacerbates the threat.\u003c/p\u003e\n\u003ch2 id=\"recommendation\"\u003eRecommendation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eInspect web server logs for suspicious POST requests to \u003ccode\u003elogin_check.php\u003c/code\u003e with potentially malicious SQL syntax in the \u003ccode\u003eUsername\u003c/code\u003e parameter to detect exploitation attempts (see Sigma rule \u0026ldquo;Detect SQL Injection Attempts in Login Check\u0026rdquo;).\u003c/li\u003e\n\u003cli\u003eImplement input validation and sanitization on the \u0026lsquo;Username\u0026rsquo; parameter in \u003ccode\u003elogin_check.php\u003c/code\u003e to prevent SQL injection.\u003c/li\u003e\n\u003cli\u003eMonitor database logs for unusual SQL queries originating from the web application (see Sigma rule \u0026ldquo;Detect Anomalous SQL Queries\u0026rdquo;).\u003c/li\u003e\n\u003cli\u003eApply security best practices for SQL database configuration, including principle of least privilege.\u003c/li\u003e\n\u003cli\u003eUpgrade to a patched version of student_management_system_by_php as soon as one is released.\u003c/li\u003e\n\u003c/ul\u003e\n","date_modified":"2026-06-01T06:17:43Z","date_published":"2026-06-01T06:17:43Z","id":"https://feed.craftedsignal.io/briefs/2026-06-sql-injection-student-management-system/","summary":"A SQL injection vulnerability exists in raisulislamg4's student_management_system_by_php up to commit 310d950e09013d5133c6b9210aff9444382d16d1, allowing remote attackers to execute arbitrary SQL commands by manipulating the Username argument in login_check.php.","title":"SQL Injection Vulnerability in student_management_system_by_php (CVE-2026-10225)","url":"https://feed.craftedsignal.io/briefs/2026-06-sql-injection-student-management-system/"}],"language":"en","title":"CraftedSignal Threat Feed — Student_management_system_by_php","version":"https://jsonfeed.org/version/1.1"}