Product
CVE-2026-14771: SourceCodester Class and Exam Timetabling System SQL Injection Vulnerability
1 rule 1 TTP 1 CVE 6 IOCsA critical SQL injection vulnerability (CVE-2026-14771) has been discovered in SourceCodester Class and Exam Timetabling System version 1.0, allowing remote unauthenticated attackers to manipulate the 'ID' argument in `/edit_exam1.php`, leading to arbitrary SQL command execution and potential data compromise.
CVE-2026-14770: SourceCodester Class and Exam Timetabling System SQL Injection Vulnerability
1 rule 1 TTP 1 CVEA high-severity SQL injection vulnerability, CVE-2026-14770, exists in SourceCodester Class and Exam Timetabling System version 1.0 within the `/edit_room.php` file, allowing remote, unauthenticated attackers to manipulate the 'ID' argument with public exploits, leading to data exposure and potential database compromise.
CVE-2026-14734: SQL Injection in SourceCodester Class and Exam Timetabling System
1 rule 3 TTPs 1 CVE 6 IOCsA high-severity SQL injection vulnerability (CVE-2026-14734) exists in SourceCodester Class and Exam Timetabling System version 1.0, allowing unauthenticated remote attackers to manipulate the 'ID' argument in `/edit_product.php` to execute arbitrary SQL queries, with a publicly available exploit increasing the risk of unauthorized data access, modification, or exfiltration.
CVE-2026-14733: Remote SQL Injection in SourceCodester Class and Exam Timetabling System
1 rule 2 TTPs 1 CVEA high-severity SQL injection vulnerability, CVE-2026-14733, exists in SourceCodester Class and Exam Timetabling System 1.0, specifically within the '/edit_coursea.php' file, allowing unauthenticated remote attackers to manipulate the 'ID' argument and execute arbitrary SQL commands due to a publicly available exploit.
CVE-2026-14732: SQL Injection in SourceCodester Class and Exam Timetabling System
1 rule 1 TTP 1 CVEA critical SQL injection vulnerability (CVE-2026-14732) in SourceCodester Class and Exam Timetabling System 1.0 allows remote, unauthenticated attackers to execute arbitrary SQL commands via manipulation of the `ID` argument in `/edit_exam.php`, leading to data exfiltration and potential system compromise.
CVE-2026-14642: SourceCodester Class and Exam Timetabling System SQL Injection
1 rule 1 TTP 1 CVE 4 IOCsA critical SQL injection vulnerability, identified as CVE-2026-14642, exists in SourceCodester Class and Exam Timetabling System version 1.0, allowing remote attackers to inject SQL commands by manipulating the 'ID' argument within the '/edit_class2.php' file, with an exploit publicly available.
SQL Injection in SourceCodester Class and Exam Timetabling System (CVE-2026-14641)
1 rule 1 TTP 1 CVEA critical vulnerability, CVE-2026-14641, in SourceCodester Class and Exam Timetabling System version 1.0 allows for remote SQL injection via the 'ID' argument in the '/edit_course.php' file, enabling unauthenticated attackers to manipulate database queries with a publicly disclosed exploit.