CVE-2026-5650

Summary

A vulnerability was found in code-projects Online Application System for Admission 1.0. Impacted is an unknown function of the file /enrollment/database/oas.sql. Performing a manipulation results in insecure storage of sensitive information. The attack is possible to be carried out remotely. The exploit has been made public and could be used.

Affected Software

VendorProductVersion RangeStatus
code-projectsOnline Application System for Admission1.0affected

Weaknesses

  • CWE-922: Insecure Storage of Sensitive Information
  • CWE-200: Information Disclosure

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: yes
    • Technical Impact: partial

References