LOW
Razormist
CVE published 2026-04-13
CVE-2026-36874
CVE-2026-36874 describes a SQL injection vulnerability affecting Basic Library System v1.0 in /librarysystem/load_student.php. NVD rates the issue LOW with a CVSS 3.1 score of 2.7. The published evidence indicates limited confidentiality impact and no integrity or availability impact, but the attack vector still matters because exposed deployments may allow privileged or authenticated access paths to be abused.