SQL Injection in Code-projects Simple Student Alumni System

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

9.8

SQL Injection in Code-projects Simple Student Alumni System

CVE-2026-26696

Summary

The Simple Student Alumni System is at risk if an attacker can inject malicious SQL code through the recordteacher_edit.php page. This means an attacker could potentially access or alter sensitive information. Users should update the system to the latest version or apply a patch to fix this issue.

What to do

No fix is available yet. Check with your software vendor for updates.

Affected software

Vendor	Product	Affected versions	Fix available
carmelo	simple_student_alumni_system	1.0	–

Original title

code-projects Simple Student Alumni System v1.0 is vulnerable to SQL Injection in /TracerStudy/recordteacher_edit.php.

Original description

code-projects Simple Student Alumni System v1.0 is vulnerable to SQL Injection in /TracerStudy/recordteacher_edit.php.

nvd CVSS3.1 9.8

Vulnerability type

CWE-89 SQL Injection

https://github.com/Thirtypenny77/bug_report/blob/main/code-projects/simple-stude... Exploit Third Party Advisory

Published: 2 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026