| Título | SourceCodester Student Grades Management System 1.0 Improper Access Controls |
|---|
| Descripción | A vulnerability was found in SourceCodester Student Grades Management System 1.0. It has been classified as critical. Affected is the remove_student handler of the file classroom.php. The manipulation of the argument classroom_id/student_id leads to insecure direct object reference with cascading deletion of grade records. It is possible to launch the attack remotely. The vendor was notified prior to public disclosure.
Affected Product URL:
https://www.sourcecodester.com/php/18408/student-grades-management-system-using-html-css-and-javascript-source-code.html
Note:
Please visit the GitHub address to download the zip file of the two vulnerability reports to your local machine. Use the password: abc123.. View the report |
|---|
| Fuente | ⚠️ https://github.com/Jack-MRJ/Student-Grades-Management-System-Vulnerability-Report |
|---|
| Usuario | GeekerA (UID 97423) |
|---|
| Sumisión | 2026-04-27 11:49 (hace 1 mes) |
|---|
| Moderación | 2026-05-24 11:26 (27 days later) |
|---|
| Estado | Duplicado |
|---|
| Entrada de VulDB | 365465 [SourceCodester Student Grades Management System 1.0 classroom.php getClassroomStudents/removeStudentFromClassroom classroom_id escalada de privilegios] |
|---|
| Puntos | 0 |
|---|