Authorization Bypass in SourceCodester CET Automated Grading System
CVE-2026-14608
5.3MEDIUM
Key Information:
- Vendor
Sourcecodester
- Vendor
- CVE Published:
- 3 July 2026
What is CVE-2026-14608?
A vulnerability exists in the SourceCodester CET Automated Grading System with AI Predictive Analytics 1.0, specifically within the POST handler in index.php. By manipulating the 'ID' argument during a request, attackers can bypass authorization checks, potentially gaining unauthorized access to sensitive information. This exposure allows for remote exploitation, making it crucial for users to be aware of this risk and take necessary precautions to secure their systems.
Affected Version(s)
CET Automated Grading System with AI Predictive Analytics 1.0
References
CVSS V4
Score:
5.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None
Timeline
Vulnerability published
Vulnerability Reserved
Credit
Abhay mp (VulDB User)
VulDB Vulnerability Moderation Team
