A vulnerability classified as critical has been found in SourceCodester Class and Exam Timetabling System 1.0/2.php. This affects an unknown function of the file /edit_exam2.php. Performing a manipulation of the argument ID results in sql injection.

This vulnerability is identified as CVE-2026-15597. The attack can be initiated remotely. Additionally, an exploit exists.