https://feed.craftedsignal.io/tags/cve-2026-4632/Trending threats, MITRE ATT&CK coverage, and detection metadata — refreshed continuously.Hugoenhello@craftedsignal.iohello@craftedsignal.ioTue, 24 Mar 2026 05:16:24 +0000https://feed.craftedsignal.io/briefs/2026-03-online-enrollment-sqli/Tue, 24 Mar 2026 05:16:24 +0000hello@craftedsignal.iohttps://feed.craftedsignal.io/briefs/2026-03-online-enrollment-sqli/CVE-2026-4632 is a SQL Injection vulnerability in itsourcecode Online Enrollment System 1.0, specifically affecting the Parameter Handler component at '/sms/user/index.php?view=add', allowing a remote attacker to inject malicious SQL code by manipulating the 'Name' argument, with a public exploit available.A SQL Injection vulnerability, identified as CVE-2026-4632, has been discovered in itsourcecode Online Enrollment System version 1.0. The vulnerability resides within the Parameter Handler component of the application, specifically in the /sms/user/index.php?view=add file. By manipulating the Name argument, a remote attacker can inject malicious SQL code, potentially leading to unauthorized data access, modification, or deletion. The existence of a publicly available exploit increases the…

]]>highadvisorysql-injectionweb-applicationcve-2026-4632