CVE-2026-14719 PUBLISHED

SourceCodester Onlne Examination & Learning Management System Registration Endpoint register.php privileges management

Assigner: VulDB
Reserved: 04.07.2026 Published: 05.07.2026 Updated: 05.07.2026

A flaw has been found in SourceCodester Onlne Examination & Learning Management System 1.0. The impacted element is an unknown function of the file register.php of the component Registration Endpoint. Executing a manipulation of the argument role can lead to improper privilege management. The attack can be executed remotely. The exploit has been published and may be used. The name of the affected product appears to have a typo in it.

Metrics

CVSS Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P
CVSS Score: 6.9

Product Status

Vendor SourceCodester
Product Onlne Examination & Learning Management System
Versions
  • Version 1.0 is affected

Credits

  • ameenkbrd (VulDB User) reporter

References

Problem Types

  • Improper Privilege Management CWE
  • Incorrect Privilege Assignment CWE