A vulnerability was found in SourceCodester Onlne Examination & Learning Management System 1.0. It has been classified as critical. This affects an unknown part of the file /ajax_enroll.php of the component Enrollment Management. The manipulation of the argument student_id/schedule_id/action leads to improper authorization.
This vulnerability is uniquely identified as CVE-2026-14778. The attack is possible to be carried out remotely. Moreover, an exploit is present.
The name of the affected product appears to have a typo in it.