VYPR
Medium severity6.3NVD Advisory· Published Mar 8, 2026· Updated Apr 29, 2026

CVE-2026-3745

CVE-2026-3745

Description

A vulnerability was found in code-projects Student Web Portal 1.0. Affected is an unknown function of the file profile.php. The manipulation of the argument User results in sql injection. The attack can be launched remotely. The exploit has been made public and could be used.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:carmelo:student_web_portal:1.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:carmelo:student_web_portal:1.0:*:*:*:*:*:*:*
    • (no CPE)range: =1.0

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.