A vulnerability has been found in SourceCodester Onlne Examination & Learning Management System 1.0 and classified as critical. Affected by this vulnerability is the function
pathinfo of the file /upload_files.php of the component Filename Extension. Performing a manipulation results in unrestricted upload.
This vulnerability is known as CVE-2026-14776. Remote exploitation of the attack is possible. Furthermore, an exploit is available.
The name of the affected product appears to have a typo in it.