Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
4.9
Simple Student Alumni System v1.0: Unauthorized Database Access
CVE-2026-26698
Summary
An attacker can manipulate database queries to access sensitive student information, potentially allowing them to view or modify personal data. This is a serious risk because it could lead to unauthorized access to sensitive information. Update to the latest version of the system or apply proper security patches to prevent this vulnerability.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| carmelo | simple_student_alumni_system | 1.0 | – |
Original title
code-projects Simple Student Alumni System v1.0 is vulnerable to SQL Injection in /TracerStudy/modal_edit.php.
Original description
code-projects Simple Student Alumni System v1.0 is vulnerable to SQL Injection in /TracerStudy/modal_edit.php.
nvd CVSS3.1
4.9
Vulnerability type
CWE-89
SQL Injection
- https://github.com/Thirtypenny77/bug_report/blob/main/code-projects/simple-stude... Exploit Third Party Advisory
Published: 2 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026