CVE-2026-9484 | SourceCodester Student Grades Management System 1.0 classroom.php getClassroomStudents/removeStudentFromClassroom classroom_id improper authorization

Inserito da Angelo Barbosa | Mag 24, 2026 | CVE

A vulnerability categorized as critical has been discovered in SourceCodester Student Grades Management System 1.0. Affected by this vulnerability is the function getClassroomStudents/removeStudentFromClassroom of the file classroom.php. Executing a manipulation of the argument classroom_id can lead to improper authorization.

The identification of this vulnerability is CVE-2026-9484. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2026-9484 | SourceCodester Student Grades Management System 1.0 classroom.php getClassroomStudents/removeStudentFromClassroom classroom_id improper authorization

Post correlati

CVE-2025-13822 | MCPHub up to 0.10.x Endpoint authorization

CVE-2025-33142 | IBM WebSphere Application Server 8.5/9.0 TLS Connection certificate validation

CVE-2025-69392 | iMoney Plugin up to 0.36 on WordPress cross site scripting

CVE-2026-41432 | QuantumNous new-api up to 0.12.9 data authenticity (GHSA-xff3-5c9p-2mr4)