Title: code-projects Online Reviewer System V1 SQL Injection Description: - Critical SQL injection vulnerability detected in the "/system/system/admins/assessments/pretest/questions-view.php" file in the "Online Reviewer System In PHP". - Caused by insufficient validation of user input for the "id" parameter. - Allows attackers to inject malicious SQL queries, access the database, and gain access to sensitive information. Source: - https://github.com/tiancesec/CVE/issues/16 User: - SHU for security (UID 95070) Submission Date: - February 1, 2026 Moderation Date: - February 7, 2026 Status: - Accepted VulDB Entry: - 234898 Points: - 20