CVE-2026-11485 PUBLISHED

A security vulnerability has been detected in SourceCodester Class and Exam Timetabling System 1.0. Affected is an unknown function of the file /archive2.php. Such manipulation of the argument sy leads to sql injection. The attack may be launched remotely. The exploit has been disclosed publicly and may be used.

• moist (VulDB User) reporter

• VDB-369105 | SourceCodester Class and Exam Timetabling System archive2.php sql injection
• VDB-369105 | CTI Indicators (IOB, IOC, TTP, IOA)
• CVE-2026-11485 | CVE Analysis and Report
• Submit #834110 | sourcecodester Class and Exam Timetabling System V1.0 SQL injection
• https://github.com/ssaaaa1234/cve/issues/2
• https://www.sourcecodester.com/

• SQL Injection CWE
• Injection CWE