SourceCodester Barangay Resident Profiling and Information Management System Password Reset passsword_reset.php hard-coded password
CVE-2026-11515

6.9MEDIUM

Key Information:

Vendor

Sourcecodester
Status
Barangay Resident Profiling And Information Management System
Vendor
CVE Published:
8 June 2026

What is CVE-2026-11515?

A vulnerability has been found in SourceCodester Barangay Resident Profiling and Information Management System 1.0. The impacted element is an unknown function of the file passsword_reset.php of the component Password Reset Handler. Such manipulation of the argument new_password with the input password123 leads to use of hard-coded password. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

Affected Version(s)

Barangay Resident Profiling and Information Management System 1.0

References

https://vuldb.com/vuln/369135
vdb-entrytechnical-description
https://vuldb.com/vuln/369135/cti
signaturepermissions-required
https://vuldb.com/cve/CVE-2026-11515
third-party-advisory

CVSS V4

Score:
6.9
Severity:
MEDIUM
Confidentiality:
None
Integrity:
Low
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Kamran Saifullah (VulDB User)
VulDB Vulnerability Moderation Team
.