CVE-2026-6167 PUBLISHED

A vulnerability was detected in code-projects Faculty Management System 1.0. Impacted is an unknown function of the file /subject-print.php. The manipulation of the argument ID results in sql injection. The attack may be launched remotely. The exploit is now public and may be used.

• wfcht-sy (VulDB User) reporter

• VDB-357055 | code-projects Faculty Management System subject-print.php sql injection
• VDB-357055 | CTI Indicators (IOB, IOC, TTP, IOA)
• Submit #797098 | code-projects Faculty Management System V1.0 SQL injection
• https://github.com/wfcht-sy/src/issues/1
• https://code-projects.org/

• SQL Injection CWE
• Injection CWE