CVE-2026-12529

HIGH

SourceCodester CET Automated Grading System with AI Predictive Analytics Student Self-Registration Endpoint index.php access control

Title source: cna
STIX 2.1

Description

A security vulnerability has been detected in SourceCodester CET Automated Grading System with AI Predictive Analytics 1.0. Affected is an unknown function of the file /index.php of the component Student Self-Registration Endpoint. The manipulation leads to improper access controls. Remote exploitation of the attack is possible.

References (5)

Core 5
Core References
Vdb Entry vdb-entry
VDB-371976 | SourceCodester CET Automated Grading System with AI Predictive Analytics Student Self-Registration Endpoint index.php access control
https://vuldb.com/vuln/371976
Signature, Permissions Required signature permissions-required
VDB-371976 | CTI Indicators (IOB, IOC, TTP, IOA)
https://vuldb.com/vuln/371976/cti
Third Party Advisory third-party-advisory
CVE-2026-12529 | CVE Analysis and Report
https://vuldb.com/cve/CVE-2026-12529
Third Party Advisory third-party-advisory
Submit #837783 | https://www.sourcecodester.com/ CET Automated Grading System with AI Predictive Analytics in PHP and MySQL Version: 1.0 Improper Access Controls
https://vuldb.com/submit/837783

Scores

CVSS v3 7.3
EPSS 0.0028
EPSS Percentile 20.3%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact partial

Details

CWE
CWE-266 CWE-284
Status published
Products (1)
SourceCodester/CET Automated Grading System with AI Predictive Analytics 1.0
Published Jun 17, 2026
Tracked Since Jun 18, 2026