CVE-2026-11485

HIGH WAF: High

CVSS 7.3 Published: 2026-06-08

CWE-89

A security vulnerability has been detected in SourceCodester Class and Exam Timetabling System 1.0. Affected is an unknown function of the file /archive2.php. Such manipulation of the argument sy leads to sql injection. The attack may be launched remotely. The exploit has been disclosed publicly and may be used.

WAF Coverage Analysis

SQL Injection High WAF Coverage

OWASP: A03:2021 Injection

942xxx - SQL Injection

References

github.com
vuldb.com
vuldb.com
vuldb.com
vuldb.com
www.sourcecodester.com

Back to CVE Database