A flaw has been found in itsourcecode College Management System 1.0. This issue affects some unknown processing of the file /admin/teacher-salary.php. This manipulation of the argument teacher_id causes sql injection. It is possible to initiate the attack remotely. The exploit has been published and may be used.
Published: 2026-02-25
CVSS: 9.8
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Download Exploit for CVE-2026-3152 here:
Use Tor Browser to access .onion site.
https://sonitex.com/exploit-318-cve-2026-28363/
https://sonitex.com/exploit-229-cve-2026-27743/