GCVE - cpe:2.3:a:carmelo:student_web_portal:1.0:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:carmelo:student_web_portal:1.0:*:*:*:*:*:*:*

part: a version: 1.0 update: *

Vendor	Carmelo (`6b035a27-935d-5e7e-afc6-e62cb1b98eda`)
Product	Student Web Portal (`ca1cb19c-a4ed-58d4-b51e-9c0e49243592`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2026-3745`	vulnerable	2026-06-03 15:23:33.431779	code-projects Student Web Portal profile.php sql injection MEDIUM (6.3) A vulnerability was found in code-projects Student Web Portal 1.0. Affected is an unknown function of the file profile.php. The manipulation of the argument User results in sql injection. The attack can be launched remotely. The exploit has been made public and could be used. Published: 2026-03-08T15:32:08.527Z Updated: 2026-03-11T19:42:15.646Z Open on db.gcve.eu Reference links https://vuldb.com/?id.349723 https://vuldb.com/?ctiid.349723 https://vuldb.com/?submit.767854 https://github.com/CH0ico/CVE_choco_4 https://github.com/CH0ico/CVE_choco_4/blob/main/report.md	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2026-3744`	vulnerable	2026-06-03 15:23:33.430988	code-projects Student Web Portal signup.php valreg_passwdation sql injection HIGH (7.3) A vulnerability has been found in code-projects Student Web Portal 1.0. This impacts the function valreg_passwdation of the file signup.php. The manipulation of the argument reg_passwd leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. Published: 2026-03-08T15:02:12.810Z Updated: 2026-03-11T19:41:33.108Z Open on db.gcve.eu Reference links https://vuldb.com/?id.349722 https://vuldb.com/?ctiid.349722 https://vuldb.com/?submit.767852 https://github.com/CH0ico/CVE_choco_2 https://github.com/CH0ico/CVE_choco_2/blob/main/report.md	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2026-2158`	vulnerable	2026-06-03 15:19:23.638749	code-projects Student Web Portal check_user.php sql injection HIGH (7.3) A vulnerability was detected in code-projects Student Web Portal 1.0. This impacts an unknown function of the file /check_user.php. Performing a manipulation of the argument Username results in sql injection. It is possible to initiate the attack remotely. Published: 2026-02-08T15:02:12.240Z Updated: 2026-02-23T09:43:20.012Z Open on db.gcve.eu Reference links https://vuldb.com/?id.344860 https://vuldb.com/?ctiid.344860 https://vuldb.com/?submit.748816 https://github.com/Qing-420/cve/blob/main/sql.md https://code-projects.org/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.