{"description":"Trending threats, MITRE ATT\u0026CK coverage, and detection metadata. Fed continuously.","feed_url":"https://feed.craftedsignal.io/vendors/ousl-group-brinarybrains/feed.json","home_page_url":"https://feed.craftedsignal.io/","items":[{"_cs_actors":[],"_cs_cpes":[],"_cs_cves":[{"cvss":7.3,"id":"CVE-2026-10167"}],"_cs_exploited":true,"_cs_has_poc":false,"_cs_poc_references":[],"_cs_products":["School Student Management System"],"_cs_severities":["high"],"_cs_tags":["cve-2026-10167","improper-authentication","web-application"],"_cs_type":"threat","_cs_vendors":["OUSL-GROUP-BrinaryBrains"],"content_html":"\u003cp\u003eCVE-2026-10167 identifies an improper authentication vulnerability within the OUSL-GROUP-BrinaryBrains School Student Management System, affecting versions up to 1e70e5ad1125b86dca4ee086eb6bb121f17708b6. This vulnerability resides in the \u003ccode\u003esign_auth_cookie\u003c/code\u003e function of the \u003ccode\u003eapplication/controllers/Login.php\u003c/code\u003e file, specifically within the \u003ccode\u003eMY_Controller\u003c/code\u003e component. A remote attacker can exploit this flaw by manipulating the \u003ccode\u003erole\u003c/code\u003e argument, leading to unauthorized access. The exploit is publicly available, increasing the risk of active exploitation. The vendor employs rolling releases, making specific affected versions difficult to pinpoint. The project has been notified of the vulnerability but has yet to respond.\u003c/p\u003e\n\u003ch2 id=\"attack-chain\"\u003eAttack Chain\u003c/h2\u003e\n\u003col\u003e\n\u003cli\u003eAttacker identifies the \u003ccode\u003esign_auth_cookie\u003c/code\u003e function within \u003ccode\u003eapplication/controllers/Login.php\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eAttacker crafts a malicious HTTP request targeting the vulnerable function.\u003c/li\u003e\n\u003cli\u003eThe HTTP request includes a manipulated \u003ccode\u003erole\u003c/code\u003e argument designed to bypass authentication checks.\u003c/li\u003e\n\u003cli\u003eThe server-side application processes the crafted request without proper validation of the \u003ccode\u003erole\u003c/code\u003e parameter.\u003c/li\u003e\n\u003cli\u003eThe application\u0026rsquo;s authentication logic incorrectly grants access based on the attacker-supplied \u003ccode\u003erole\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eThe attacker gains unauthorized access to the system with elevated privileges.\u003c/li\u003e\n\u003cli\u003eAttacker performs actions they are not authorized to do.\u003c/li\u003e\n\u003cli\u003eAttacker potentially exfiltrates sensitive student data or modifies system settings.\u003c/li\u003e\n\u003c/ol\u003e\n\u003ch2 id=\"impact\"\u003eImpact\u003c/h2\u003e\n\u003cp\u003eSuccessful exploitation of CVE-2026-10167 allows unauthorized remote attackers to bypass authentication and gain elevated privileges within the OUSL-GROUP-BrinaryBrains School Student Management System. This can lead to sensitive data breaches, modification of student records, and disruption of school operations. The lack of a vendor response increases the urgency for defenders to implement mitigating controls. Given the public availability of the exploit, attacks are likely to occur.\u003c/p\u003e\n\u003ch2 id=\"recommendation\"\u003eRecommendation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMonitor web server logs for requests targeting \u003ccode\u003eapplication/controllers/Login.php\u003c/code\u003e with suspicious manipulation of the \u003ccode\u003erole\u003c/code\u003e parameter. Deploy the Sigma rule \u003ccode\u003eDetect Suspicious Role Parameter Manipulation\u003c/code\u003e to identify potential exploitation attempts.\u003c/li\u003e\n\u003cli\u003eImplement input validation and sanitization on the \u003ccode\u003erole\u003c/code\u003e parameter within the \u003ccode\u003esign_auth_cookie\u003c/code\u003e function to prevent malicious manipulation.\u003c/li\u003e\n\u003cli\u003eApply rate limiting to the authentication endpoint to mitigate brute-force attempts to exploit the vulnerability.\u003c/li\u003e\n\u003cli\u003eConsider deploying a web application firewall (WAF) rule to block requests that match the exploit pattern.\u003c/li\u003e\n\u003c/ul\u003e\n","date_modified":"2026-05-31T05:17:54Z","date_published":"2026-05-31T05:17:54Z","id":"https://feed.craftedsignal.io/briefs/2026-05-cve-2026-10167/","summary":"CVE-2026-10167 is an improper authentication vulnerability in OUSL-GROUP-BrinaryBrains School Student Management System allowing a remote attacker to manipulate the 'role' argument to bypass authentication.","title":"CVE-2026-10167 Improper Authentication in OUSL-GROUP-BrinaryBrains School Student Management System","url":"https://feed.craftedsignal.io/briefs/2026-05-cve-2026-10167/"}],"language":"en","title":"CraftedSignal Threat Feed — OUSL-GROUP-BrinaryBrains","version":"https://jsonfeed.org/version/1.1"}