CVE-2026-2983

Medium CVSS: 6.9

A vulnerability was determined in SourceCodester Student Result Management System 1.0. The impacted element is an unknown function of the file /admin/core/import_users.php of the component Bulk Import. This manipulation of the argument File causes improper access controls. Remote exploitation of the attack is possible. The exploit has been publicly disclosed and may be utilized.

Vendor

Munyweki

Product

Student Result Management System

CWE

CWE-266

Yayın Tarihi

2026-02-23 10:16:58

Güncelleme

2026-02-24 18:32:54

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-266 Student Result Management System MEDIUM Munyweki 2026

Referanslar

https://github.com/Shaon-Xis/SRMS-1.0---Unauthenticated-SMTP-Hijacking-to-Account-Takeover#-vulnerability-2-unauthenticated-bulk-account-injection-arbitrary-file-upload https://vuldb.com/?ctiid.347366 https://vuldb.com/?id.347366 https://vuldb.com/?submit.756135 https://www.sourcecodester.com/

Benzer Kayıtlar

Medium

CVE-2026-2984

A vulnerability was identified in SourceCodester Student Result Management System 1.0. This affects an unknown function…

Medium

CVE-2026-2938

A vulnerability has been found in SourceCodester Student Result Management System 1.0. The affected element is an unknow…

Medium

CVE-2025-5725

A vulnerability was found in SourceCodester Student Result Management System 1.0. It has been declared as problematic. A…

Medium

CVE-2025-5724

A vulnerability was found in SourceCodester Student Result Management System 1.0. It has been classified as problematic.…

Medium

CVE-2025-5723

A vulnerability was found in SourceCodester Student Result Management System 1.0 and classified as problematic. This iss…

Medium

CVE-2025-5722

A vulnerability has been found in SourceCodester Student Result Management System 1.0 and classified as problematic. Thi…