| タイトル | SourceCodester Student Grades Management System 1.0 Improper Access Controls |
|---|
| 説明 | A vulnerability was found in SourceCodester Student Grades Management System 1.0. It has been classified as critical. Affected is the remove_student handler of the file classroom.php. The manipulation of the argument classroom_id/student_id leads to insecure direct object reference with cascading deletion of grade records. It is possible to launch the attack remotely. The vendor was notified prior to public disclosure.
Affected Product URL:
https://www.sourcecodester.com/php/18408/student-grades-management-system-using-html-css-and-javascript-source-code.html
Note:
Please visit the GitHub address to download the zip file of the two vulnerability reports to your local machine. Use the password: abc123.. View the report |
|---|
| ソース | ⚠️ https://github.com/Jack-MRJ/Student-Grades-Management-System-Vulnerability-Report |
|---|
| ユーザー | GeekerA (UID 97423) |
|---|
| 送信 | 2026年04月27日 11:49 (1 月 ago) |
|---|
| モデレーション | 2026年05月24日 11:26 (27 days later) |
|---|
| ステータス | 重複 |
|---|
| VulDBエントリ | 365465 [SourceCodester Student Grades Management System 1.0 classroom.php getClassroomStudents/removeStudentFromClassroom classroom_id 特権昇格] |
|---|
| ポイント | 0 |
|---|