Home yashpokharna2555 CVE-2026-9474
Back to yashpokharna2555

CVE-2026-9474

StudentManagementSystem - studentdel.php

yashpokharna2555 CVSS 7.3 Updated May 29, 2026

Executive Risk Summary

"A SQL injection vulnerability was found in the StudentManagementSystem, specifically in the confirm_logged_in function of the studentdel.php file, allowing remote attackers to inject malicious SQL code. This vulnerability can be exploited to extract or modify sensitive data, potentially leading to unauthorized access or data breaches."

Anticipated Attack Path

  1. 1. Initial Exploitation: Attacker sends malicious SQL injection payload to the studentdel.php file
  2. 2. Post-Exploitation: Attacker extracts or modifies sensitive data from the database
  3. 3. Persistence: Attacker maintains access to the system, potentially leading to further exploitation

Am I Vulnerable?

  • Verify the studentdel.php file for any suspicious modifications or backdoors
  • Monitor database logs for unusual activity or malicious SQL queries
  • Implement input validation and sanitization to prevent SQL injection attacks

Operational Audit Arsenal

Target Type PHP Script
Target Asset studentdel.php
Standard Path /studentdel.php

Manual Verification Required

This is a non-Windows asset (yashpokharna2555). Use the target asset details and official path provided above to verify your current version against the official vendor advisories listed below.

Patch Impact Forecast

Reboot Required Unlikely

Low to Moderate

Internal Work Notes

SQL injection vulnerability in StudentManagementSystem - studentdel.php, requiring immediate attention to prevent potential data breaches or unauthorized access.

Technical Intelligence & Operational Utilities • Delivered Weekly

Intelligence Sources

Official Advisoryhttps://github.com/yashpokharna2555/StudentManagementSystem/
Official Advisoryhttps://github.com/yashpokharna2555/StudentManagementSystem/issues/5
Official Advisoryhttps://vuldb.com/submit/814004
Official Advisoryhttps://vuldb.com/vuln/365455
Official Advisoryhttps://vuldb.com/vuln/365455/cti

Related yashpokharna2555 Threats

CVE-2026-9469 CVSS 7.3

StudentManagementSystem - success.php
CVE-2026-9470 CVSS 7.3

StudentManagementSystem - student_trans.php
Data compiled from NVD, MSRC, and CISA KEV Catalog. Intelligence synthesized via AI. Scripts provided for diagnostic purposes under MIT License.