CVE-2026-11552 | SourceCodester Onlne Examination & Learning Management System 1.0 import_users.php raw_password hard-coded password

A vulnerability identified as critical has been detected in SourceCodester Onlne Examination & Learning Management System and Syllabus-aligned Learning Management and Examination System 1.0. Affected by this issue is some unknown functionality of the file import_users.php. The manipulation of the argument raw_password with the input CICT_2026 leads to use of hard-coded password.

This vulnerability is documented as CVE-2026-11552. The attack can be initiated remotely. Additionally, an exploit exists.

This product is distributed under two entirely different names.

CVE-2026-11552 | SourceCodester Onlne Examination & Learning Management System 1.0 import_users.php raw_password hard-coded password

Post correlati

CVE-2024-50205 | Linux Kernel up to 5.15.169/6.1.114/6.6.58/6.11.5 ALSA apply_constraint_to_size divide by zero

CVE-2025-49028 | Zoho Mail Zoho ZeptoMail Plugin up to 3.3.1 on WordPress cross-site request forgery

CVE-2024-1098 | Rebuild up to 3.5.5 /filex/proxy-download QiniuCloud.getStorageFile url information disclosure

CVE-2025-45846 | ALFA AIP-W512 3.2.2.2.3 Setting formBTClinetSetting torrentsindex stack-based overflow