CVE-2026-5650

MEDIUM

code-projects Online Application System for Admission oas.sql sensitive information

Title source: cna

Description

A vulnerability was found in code-projects Online Application System for Admission 1.0. Impacted is an unknown function of the file /enrollment/database/oas.sql. Performing a manipulation results in insecure storage of sensitive information. The attack is possible to be carried out remotely. The exploit has been made public and could be used.

References (5)

Scores

CVSS v3 5.3
EPSS 0.0004
EPSS Percentile 12.3%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact partial

Details

CWE
CWE-200 CWE-922
Status published
Products (1)
code-projects/Online Application System for Admission 1.0
Published Apr 06, 2026
Tracked Since Apr 06, 2026