Low severity2.7NVD Advisory· Published Apr 13, 2026· Updated Apr 14, 2026

CVE-2026-36920

Description

Sourcecodester Online Reviewer System v1.0 is vulnerable to SQL Injection in the file /system/system/admins/assessments/examproper/questions-view.php.

Affected products

Janobe/Online Reviewer System
cpe:2.3:a:janobe:online_reviewer_system:1.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/hubdk01/bug_report/blob/main/Sourcecodester/online-reviewer-system/SQL-1.mdnvdExploitThird Party Advisory

News mentions

No linked articles in our index yet.

cvss	0.176
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000