CVE-2026-9484 PUBLISHED

A vulnerability was determined in SourceCodester Student Grades Management System 1.0. Affected by this vulnerability is the function getClassroomStudents/removeStudentFromClassroom of the file classroom.php. Executing a manipulation of the argument classroom_id can lead to improper authorization. The attack may be launched remotely. The exploit has been publicly disclosed and may be utilized.

• GeekerA (VulDB User) reporter

• VDB-365465 | SourceCodester Student Grades Management System classroom.php removeStudentFromClassroom improper authorization
• VDB-365465 | CTI Indicators (IOB, IOC, TTP, IOA)
• Submit #814038 | SourceCodester Student Grades Management System 1.0 Improper Access Controls
• Submit #814039 | SourceCodester Student Grades Management System 1.0 Improper Access Controls (Duplicate)
• Submit #814042 | SourceCodester Student Grades Management System 1.0 Improper Access Controls (Duplicate)
• https://github.com/Jack-MRJ/Student-Grades-Management-System-Vulnerability-Report
• https://www.sourcecodester.com/

• Improper Authorization CWE
• Incorrect Privilege Assignment CWE