CVE-2026-2172
HIGHFabian Online Application System For Admission - Injection
Title source: ruleDescription
A vulnerability was determined in code-projects Online Application System for Admission 1.0. Affected by this vulnerability is an unknown functionality of the file enrollment/index.php of the component Login Endpoint. Executing a manipulation can lead to sql injection. The attack can be launched remotely. The exploit has been publicly disclosed and may be utilized.
Scores
CVSS v3
7.3
EPSS
0.0001
EPSS Percentile
1.4%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Classification
CWE
CWE-74
CWE-89
Status
published
Affected Products (1)
fabian/online_application_system_for_admission
Timeline
Published
Feb 08, 2026
Tracked Since
Feb 18, 2026