CVE-2026-14608 PUBLISHED

SourceCodester CET Automated Grading System with AI Predictive Analytics POST index.php view_student authorization

Assigner: VulDB
Reserved: 03.07.2026 Published: 03.07.2026 Updated: 03.07.2026

A security vulnerability has been detected in SourceCodester CET Automated Grading System with AI Predictive Analytics 1.0. This vulnerability affects unknown code of the file /index.php?action=view_student of the component POST Handler. The manipulation of the argument ID leads to authorization bypass. Remote exploitation of the attack is possible. The exploit has been disclosed publicly and may be used.

Metrics

CVSS Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P
CVSS Score: 5.3

Product Status

Vendor SourceCodester
Product CET Automated Grading System with AI Predictive Analytics
Versions
  • Version 1.0 is affected

Credits

  • Abhay mp (VulDB User) reporter
  • VulDB Vulnerability Moderation Team coordinator

References

Problem Types

  • Authorization Bypass CWE
  • Improper Authorization CWE