GHSA-g9x9-wg38-wjf3LowCVSS 6.3
A vulnerability was identified in SourceCodester Onlne Examination & Learning Management System 1...
🔗 CVE IDs covered (1)
📋 Description
A vulnerability was identified in SourceCodester Onlne Examination & Learning Management System 1.0. Affected is an unknown function of the file /process_lesson.php. Such manipulation of the argument user_id leads to unrestricted upload. The attack may be launched remotely. The exploit is publicly available and might be used. The name of the affected product appears to have a typo in it.
🔗 References (8)
- https://nvd.nist.gov/vuln/detail/CVE-2026-14775
- https://github.com/nuiifornet/A033/blob/main/OE-LMS-RCE-1-process_lesson.md
- https://vuldb.com/cve/CVE-2026-14775
- https://vuldb.com/submit/850677
- https://vuldb.com/vuln/376365
- https://vuldb.com/vuln/376365/cti
- https://www.sourcecodester.com
- https://github.com/advisories/GHSA-g9x9-wg38-wjf3