A vulnerability has been found in raisulislamg4 student_management_system_by_php up to 310d950e09013d5133c6b9210aff9444382d16d1 and classified as critical . This issue affects some unknown processing of the file login_check.php of the component Login . Performing a manipulation of the argument Username results in sql injection. This vulnerability was named CVE-2026-10225 . The attack may be initiated remotely. In addition, an exploit is available. This product uses a rolling release model to del