CVE-2026-11485

A security vulnerability has been detected in SourceCodester Class and Exam Timetabling System 1.0. Affected is an unknown function of the file /archive2.php. Such manipulation of the argument sy leads to sql injection. The attack may be launched remotely. The exploit has been disclosed publicly...

CVE-2026-11484 SourceCodester Class and Exam Timetabling System archive3.php sql injection

A weakness has been identified in SourceCodester Class and Exam Timetabling System 1.0. This impacts an unknown function of the file /archive3.php. This manipulation of the argument sy causes sql injection. The attack may be initiated remotely. The exploit has been made available to the public an...

SourceCodester Class and Exam Timetabling System 注入漏洞

SourceCodester Class and Exam Timetabling System is an open-source classroom and exam scheduling system developed by SourceCodester. Version 1.0 of the SourceCodester Class and Exam Timetabling System has a SQL injection vulnerability, which arises from incorrect handling of the parameter "sy" in...

PT-2026-47247

Name of the Vulnerable Software and Affected Versions SourceCodester Class and Exam Timetabling System version 1.0 Description An issue exists in the file '/archive2.php' where improper handling of the sy argument allows for SQL injection. This allows a remote attacker to manipulate database...

SourceCodester Class and Exam Timetabling System 注入漏洞

SourceCodester Class and Exam Timetabling System is an open-source classroom and exam scheduling system developed by SourceCodester. Version 1.0 of the SourceCodester Class and Exam Timetabling System has a SQL injection vulnerability, which arises from incorrect handling of the parameter "sy" in...

EUVD-2025-205371

A vulnerability was detected in itsourcecode Student Management System 1.0. The impacted element is an unknown function of the file /listreport.php. The manipulation of the argument sy results in sql injection. The attack may be launched remotely. The exploit is now public and may be used...

CVE-2025-15078

A vulnerability was detected in itsourcecode Student Management System 1.0. The impacted element is an unknown function of the file /listreport.php. The manipulation of the argument sy results in sql injection. The attack may be launched remotely. The exploit is now public and may be used...

CVE-2025-15078 itsourcecode Student Management System list_report.php sql injection

A vulnerability was detected in itsourcecode Student Management System 1.0. The impacted element is an unknown function of the file /listreport.php. The manipulation of the argument sy results in sql injection. The attack may be launched remotely. The exploit is now public and may be used...

CVE-2025-15078

The CVE-2025-15078 entry concerns itsourcecode Student Management System 1.0. The vulnerability affects the /list_report.php file, where manipulation of the sy parameter in an unknown function yields a SQL injection. Exploitation is plausible remotely, and public PoCs exist according to the sourc...

PT-2025-53388

Name of the Vulnerable Software and Affected Versions itsourcecode Student Management System version 1.0 Description A flaw exists in itsourcecode Student Management System 1.0 that allows for remote SQL injection. The issue is located in the file /list report.php and involves manipulation of the...

CVE-2025-14661

CVE-2025-14661 affects itsourcecode Student Management System 1.0. The issue is an SQL injection in /advisers.php caused by improper handling of the sy parameter. It is exploitable remotely with no user interaction; impact could affect confidentiality, integrity, and availability as per the sourc...

CVE-2025-14335

A vulnerability has been found in itsourcecode Student Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /newschoolyear.php. The manipulation of the argument sy leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...

CVE-2025-14336

A vulnerability was found in itsourcecode Student Management System 1.0. Affected by this issue is some unknown functionality of the file /promote.php. The manipulation of the argument sy results in sql injection. It is possible to launch the attack remotely. The exploit has been made public and...

CVE-2025-14335

A vulnerability has been found in itsourcecode Student Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /newschoolyear.php. The manipulation of the argument sy leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...

itsourcecode Student Management System SQL注入漏洞

itsourcecode Student Management System is an open source student management system from itsourcecode. A SQL injection vulnerability exists in version 1.0 of itsourcecode Student Management System, which stems from an incorrect operation of the parameter sy in the file /promote.php, which could le...