A vulnerability, which was classified as problematic, was found in SourceCodester Class and Exam Timetabling System 1.0. Affected by this issue is some unknown functionality of the file /forCYS.php. Such manipulation of the argument course leads to cross site scripting.
This vulnerability is listed as CVE-2026-16203. The attack may be performed from remote. In addition, an exploit is available.