{"description":"Trending threats, MITRE ATT\u0026CK coverage, and detection metadata. Fed continuously.","feed_url":"https://feed.craftedsignal.io/tags/improper-privilege-management/feed.json","home_page_url":"https://feed.craftedsignal.io/","items":[{"_cs_actors":[],"_cs_cpes":[],"_cs_cves":[{"cvss":7.3,"id":"CVE-2026-14719"}],"_cs_exploited":false,"_cs_has_poc":false,"_cs_poc_references":[],"_cs_products":["Onlne Examination \u0026 Learning Management System 1.0"],"_cs_severities":["high"],"_cs_tags":["privilege-escalation","web-application","cve","sourcecodester","improper-privilege-management"],"_cs_type":"advisory","_cs_vendors":["SourceCodester"],"content_html":"\u003cp\u003eA significant vulnerability, tracked as CVE-2026-14719, has been discovered in SourceCodester Onlne Examination \u0026amp; Learning Management System version 1.0. This flaw affects the Registration Endpoint, specifically within the \u003ccode\u003eregister.php\u003c/code\u003e file, where it exhibits improper privilege management. Attackers can exploit this by manipulating the \u003ccode\u003erole\u003c/code\u003e argument during user registration. This remote vulnerability can lead to privilege escalation, allowing an unauthenticated attacker to gain elevated access within the system, potentially compromising sensitive educational data or administrative functions. The severity of this issue is heightened by the fact that a public exploit has been published and is readily available for use, making it an immediate threat to organizations utilizing this system. Defenders should prioritize patching and monitoring for exploitation attempts.\u003c/p\u003e\n\u003ch2 id=\"attack-chain\"\u003eAttack Chain\u003c/h2\u003e\n\u003col\u003e\n\u003cli\u003e\u003cstrong\u003eReconnaissance\u003c/strong\u003e: An attacker identifies a publicly accessible instance of SourceCodester Onlne Examination \u0026amp; Learning Management System 1.0.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eVulnerability Identification\u003c/strong\u003e: The attacker confirms the application version and identifies the vulnerable \u003ccode\u003eregister.php\u003c/code\u003e endpoint.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eCrafted Request\u003c/strong\u003e: The attacker crafts an HTTP POST request to \u003ccode\u003e/register.php\u003c/code\u003e that includes a manipulated \u003ccode\u003erole\u003c/code\u003e argument within the registration data.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eExploitation\u003c/strong\u003e: The crafted request is sent to the vulnerable endpoint, attempting to assign an elevated \u003ccode\u003erole\u003c/code\u003e (e.g., 'admin', 'instructor') to a newly created user account.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ePrivilege Assignment\u003c/strong\u003e: Due to improper privilege management inherent in CVE-2026-14719, the system processes the request and creates the new user with the attacker-specified elevated \u003ccode\u003erole\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eUnauthorized Access\u003c/strong\u003e: The attacker logs into the system using the credentials of the newly created account, now possessing administrative or other highly privileged access.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eImpact\u003c/strong\u003e: The attacker gains full control over system functionalities, potentially accessing sensitive student records, modifying examination content, or disrupting learning operations.\u003c/li\u003e\n\u003c/ol\u003e\n\u003ch2 id=\"impact\"\u003eImpact\u003c/h2\u003e\n\u003cp\u003eThe exploitation of CVE-2026-14719 can lead to severe consequences. Attackers can achieve unauthorized privilege escalation, granting them full administrative control over the SourceCodester Onlne Examination \u0026amp; Learning Management System. This can result in data breaches involving sensitive student or faculty information, unauthorized modification of grades or course materials, system downtime, and reputational damage for educational institutions. The public availability of an exploit significantly increases the likelihood of widespread attacks, putting all unpatched instances at immediate risk of compromise. The CVSS 3.1 Base Score of 7.3 (High) underscores the critical nature of this vulnerability.\u003c/p\u003e\n\u003ch2 id=\"recommendation\"\u003eRecommendation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003ePatch CVE-2026-14719\u003c/strong\u003e: Immediately apply any available patches or vendor-provided mitigations for SourceCodester Onlne Examination \u0026amp; Learning Management System 1.0 to address CVE-2026-14719.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eImplement WAF Rules\u003c/strong\u003e: Deploy a Web Application Firewall (WAF) to block HTTP POST requests to \u003ccode\u003e/register.php\u003c/code\u003e that contain suspicious \u003ccode\u003erole\u003c/code\u003e parameter manipulations, as indicated in the Sigma rule.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eMonitor Web Logs\u003c/strong\u003e: Enable and review web server logs for \u003ccode\u003e/register.php\u003c/code\u003e access patterns, specifically looking for HTTP POST requests with a \u003ccode\u003erole\u003c/code\u003e argument, as described in the provided Sigma rule.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eAudit New User Registrations\u003c/strong\u003e: Regularly audit new user registrations for the SourceCodester Onlne Examination \u0026amp; Learning Management System, paying close attention to any accounts created with elevated or unusual privilege levels.\u003c/li\u003e\n\u003c/ul\u003e\n","date_modified":"2026-07-05T08:20:00Z","date_published":"2026-07-05T08:20:00Z","id":"https://feed.craftedsignal.io/briefs/2026-07-cve-2026-14719-privesc/","summary":"A critical remote vulnerability (CVE-2026-14719) has been identified in SourceCodester Onlne Examination \u0026 Learning Management System version 1.0. The flaw resides in the Registration Endpoint, specifically within the 'register.php' file, where improper privilege management allows for manipulation of the 'role' argument, leading to unauthorized privilege escalation. A public exploit for this vulnerability has been published, increasing the immediate risk of exploitation.","title":"CVE-2026-14719: SourceCodester Onlne Examination \u0026 Learning Management System Privilege Escalation","url":"https://feed.craftedsignal.io/briefs/2026-07-cve-2026-14719-privesc/"}],"language":"en","title":"CraftedSignal Threat Feed - Improper-Privilege-Management","version":"https://jsonfeed.org/version/1.1"}