CVE-2026-11515

MEDIUM 5.3

SourceCodester Barangay Resident Profiling and Information Management System Password Reset passsword_reset.php hard-coded password

CVSS Score

5.3

EPSS Score

0.0%

EPSS Percentile

0th

A vulnerability has been found in SourceCodester Barangay Resident Profiling and Information Management System 1.0. The impacted element is an unknown function of the file passsword_reset.php of the component Password Reset Handler. Such manipulation of the argument new_password with the input password123 leads to use of hard-coded password. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

CWE	CWE-259 CWE-255
Vendor	sourcecodester
Product	barangay resident profiling and information management system
Published	Jun 8, 2026
Last Updated	Jun 8, 2026

Stay Ahead of the Next One

Get instant alerts for sourcecodester barangay resident profiling and information management system

Be the first to know when new medium vulnerabilities affecting sourcecodester barangay resident profiling and information management system are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:X/RC:R

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

Affected Versions

SourceCodester / Barangay Resident Profiling and Information Management System

1.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗

vuldb.com: https://vuldb.com/vuln/369135 vuldb.com: https://vuldb.com/vuln/369135/cti vuldb.com: https://vuldb.com/cve/CVE-2026-11515 vuldb.com: https://vuldb.com/submit/836238 sourcecodester.com: https://www.sourcecodester.com/

Credits

🔍 Kamran Saifullah (VulDB User) VulDB Vulnerability Moderation Team