Skip to content
Threat Feed

Product

Class and Exam Timetabling System 1.0

7 briefs RSS
high advisory

CVE-2026-14771: SourceCodester Class and Exam Timetabling System SQL Injection Vulnerability

A critical SQL injection vulnerability (CVE-2026-14771) has been discovered in SourceCodester Class and Exam Timetabling System version 1.0, allowing remote unauthenticated attackers to manipulate the 'ID' argument in `/edit_exam1.php`, leading to arbitrary SQL command execution and potential data compromise.

Class and Exam Timetabling System 1.0 sql-injection web-application vulnerability remote-code-execution data-exfiltration
1r 1t 1c 6i
high advisory

CVE-2026-14770: SourceCodester Class and Exam Timetabling System SQL Injection Vulnerability

A high-severity SQL injection vulnerability, CVE-2026-14770, exists in SourceCodester Class and Exam Timetabling System version 1.0 within the `/edit_room.php` file, allowing remote, unauthenticated attackers to manipulate the 'ID' argument with public exploits, leading to data exposure and potential database compromise.

Class and Exam Timetabling System 1.0 sql-injection vulnerability web-application cve
1r 1t 1c
high advisory

CVE-2026-14734: SQL Injection in SourceCodester Class and Exam Timetabling System

A high-severity SQL injection vulnerability (CVE-2026-14734) exists in SourceCodester Class and Exam Timetabling System version 1.0, allowing unauthenticated remote attackers to manipulate the 'ID' argument in `/edit_product.php` to execute arbitrary SQL queries, with a publicly available exploit increasing the risk of unauthorized data access, modification, or exfiltration.

Class and Exam Timetabling System 1.0 sql-injection web-application cve vulnerability initial-access
1r 3t 1c 6i
high threat

CVE-2026-14733: Remote SQL Injection in SourceCodester Class and Exam Timetabling System

A high-severity SQL injection vulnerability, CVE-2026-14733, exists in SourceCodester Class and Exam Timetabling System 1.0, specifically within the '/edit_coursea.php' file, allowing unauthenticated remote attackers to manipulate the 'ID' argument and execute arbitrary SQL commands due to a publicly available exploit.

exploited Class and Exam Timetabling System 1.0 sql-injection web-application cve
1r 2t 1c
high advisory

CVE-2026-14732: SQL Injection in SourceCodester Class and Exam Timetabling System

A critical SQL injection vulnerability (CVE-2026-14732) in SourceCodester Class and Exam Timetabling System 1.0 allows remote, unauthenticated attackers to execute arbitrary SQL commands via manipulation of the `ID` argument in `/edit_exam.php`, leading to data exfiltration and potential system compromise.

Class and Exam Timetabling System 1.0 sql-injection web-application cve sourcecodester initial-access
1r 1t 1c
high advisory

CVE-2026-14642: SourceCodester Class and Exam Timetabling System SQL Injection

A critical SQL injection vulnerability, identified as CVE-2026-14642, exists in SourceCodester Class and Exam Timetabling System version 1.0, allowing remote attackers to inject SQL commands by manipulating the 'ID' argument within the '/edit_class2.php' file, with an exploit publicly available.

Class and Exam Timetabling System 1.0 web-application sql-injection remote-code-execution data-exfiltration vulnerability cve
1r 1t 1c 4i
high advisory

SQL Injection in SourceCodester Class and Exam Timetabling System (CVE-2026-14641)

A critical vulnerability, CVE-2026-14641, in SourceCodester Class and Exam Timetabling System version 1.0 allows for remote SQL injection via the 'ID' argument in the '/edit_course.php' file, enabling unauthenticated attackers to manipulate database queries with a publicly disclosed exploit.

Class and Exam Timetabling System 1.0 sql-injection web-application cve sourcecodester php
1r 1t 1c