A vulnerability labeled as problematic has been found in SourceCodester Class and Exam Timetabling System 1.0. Affected by this vulnerability is an unknown functionality of the file /exam.php. Such manipulation of the argument day leads to cross site scripting.

This vulnerability is referenced as CVE-2026-15715. It is possible to launch the attack remotely. Furthermore, an exploit is available.