CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

CVE-2026-13486

SourceCodester Class and Exam Timetabling System 1.0/6.php contains a SQL injection vulnerability in the /preview6.php endpoint, triggered by manipulating the course_year_section parameter. Exploitation can be performed remotely, and public disclosure of the exploit is noted across CVE records (C...

7.5CVSS7AI score

Exploits0References6

CVE•added 4 hours ago•4 views

CVE-2026-13485

SourceCodester Class and Exam Timetabling System 1.0 has a SQL injection vulnerability in the /preview.php file, triggered by manipulating the course_year_section argument in an unknown function. The flaw can be exploited remotely and an exploit has been made public. The CVE entry indicates netwo...

7.5CVSS6.9AI score

Exploits0References6

CNVD•added 2025/12/18 12:0 a.m.•3 views

Class and Exam Timetable Management /preview7.php File SQL Injection Vulnerability

Class and Exam Timetable Management is a course and exam timetable management system. Class and Exam Timetable Management suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter courseyearsection/semester in the file...

9.8CVSS8AI score0.0035EPSS

Exploits1References1

RedhatCVE•added 2025/12/12 9:16 p.m.•5 views

CVE-2025-14537

A weakness has been identified in code-projects Class and Exam Timetable Management 1.0. Affected by this issue is some unknown functionality of the file /preview7.php. This manipulation of the argument courseyearsection/semester causes sql injection. Remote exploitation of the attack is possible...

9.8CVSS6.9AI score0.0035EPSS

Exploits1References1