216.73.216.133

CVE-2026-9438

· Published 25/05/2026 08:16 · Modified 26/05/2026 19:54

Labels: CVE-2026-9438 2026-05-25CVE-2026-9438CWE-99[email protected]

Essential information

Published
25/05/2026 08:16
Modified
26/05/2026 19:54
Author
Creator
CVSS
2.1 LOW (v3) 2.1 LOW (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

A vulnerability was found in yashpokharna2555 StudentManagementSystem cb2f558ddf8d19396de0f92abf2d224d46a0a203. This impacts an unknown function of the file courseDel.php. The manipulation of the argument ID results in improper control of resource identifiers. The attack may be performed from remote. The exploit has been made public and could be used. This product utilizes a rolling release system for continuous delivery, and as such, version information for affected or updated releases is not disclosed. The project was informed of the problem early through an issue report but has not responded yet.

NVD status

Status
Deferred — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
yashpokharna2555 / student management system cpe:2.3:a:yashpokharna2555:student_management_system:*:*:*:*:*:*:*:*

References