CVE-2026-9582 PUBLISHED

A security flaw has been discovered in SourceCodester CET Automated Grading System with AI Predictive Analytics 1.0. This affects an unknown function. Performing a manipulation results in cross-site request forgery. The attack is possible to be carried out remotely. The exploit has been released to the public and may be used for attacks.

• vaibhavnarkhede (VulDB User) reporter
• vaibhavnarkhede (VulDB User) analyst

• VDB-365638 | SourceCodester CET Automated Grading System with AI Predictive Analytics cross-site request forgery
• VDB-365638 | CTI Indicators (IOB, IOC)
• Submit #817930 | SourceCodester CET Automated Grading System with AI Predictive Analytics in PHP and MySQL 1.0 Cross Site Request Forgery
• https://github.com/NARKHEDE-VAIBHAV/poc/blob/main/CVE-2026-9582-Cross-Site-Request-Forgery/Advisory.md
• https://github.com/NARKHEDE-VAIBHAV/poc/blob/main/CVE-2026-9582-Cross-Site-Request-Forgery/poc.html
• https://www.sourcecodester.com/

• Cross-Site Request Forgery CWE
• Missing Authorization CWE