CVE-2026-14770

Summary

A vulnerability was detected in SourceCodester Class and Exam Timetabling System 1.0. Impacted is an unknown function of the file /edit_room.php. Performing a manipulation of the argument ID results in sql injection. It is possible to initiate the attack remotely. The exploit is now public and may be used.

Affected Software

VendorProductVersion RangeStatus
SourceCodesterClass and Exam Timetabling System1.0affected

Weaknesses

  • CWE-89: SQL Injection
  • CWE-74: Injection

References