| عنوان | SourceCodester Student Grades Management System 1.0 Improper Access Controls |
|---|
| الوصف | A vulnerability was found in SourceCodester Student Grades Management System 1.0. It has been classified as critical. Affected is the remove_student handler of the file classroom.php. The manipulation of the argument classroom_id/student_id leads to insecure direct object reference with cascading deletion of grade records. It is possible to launch the attack remotely. The vendor was notified prior to public disclosure.
Affected Product URL:
https://www.sourcecodester.com/php/18408/student-grades-management-system-using-html-css-and-javascript-source-code.html
Note:
Please visit the GitHub address to download the zip file of the two vulnerability reports to your local machine. Use the password: abc123.. View the report |
|---|
| المصدر | ⚠️ https://github.com/Jack-MRJ/Student-Grades-Management-System-Vulnerability-Report |
|---|
| المستخدم | GeekerA (UID 97423) |
|---|
| ارسال | 27/04/2026 11:49 AM (1 شهر منذ) |
|---|
| الاعتدال | 24/05/2026 11:26 AM (27 days later) |
|---|
| الحالة | مكرر |
|---|
| إدخال VulDB | 365465 [SourceCodester Student Grades Management System 1.0 classroom.php getClassroomStudents/removeStudentFromClassroom classroom_id تجاوز الصلاحيات] |
|---|
| النقاط | 0 |
|---|