CVE-2026-14734

Summary

A flaw has been found in SourceCodester Class and Exam Timetabling System 1.0. Impacted is an unknown function of the file /edit_product.php. This manipulation of the argument ID causes sql injection. Remote exploitation of the attack is possible. The exploit has been published and may be used.

Affected Software

VendorProductVersion RangeStatus
SourceCodesterClass and Exam Timetabling System1.0affected

Weaknesses

  • CWE-89: SQL Injection
  • CWE-74: Injection

References