CVE-2026-11552

MEDIUM 5.3

SourceCodester Onlne Examination & Learning Management System import_users.php hard-coded password

CVSS Score

5.3

EPSS Score

0.0%

EPSS Percentile

0th

A vulnerability has been found in SourceCodester Onlne Examination & Learning Management System and Syllabus-aligned Learning Management and Examination System 1.0. Affected by this issue is some unknown functionality of the file import_users.php. The manipulation of the argument raw_password with the input CICT_2026 leads to use of hard-coded password. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. This product is distributed under two entirely different names.

CWE	CWE-259 CWE-255
Vendor	sourcecodester
Product	onlne examination & learning management system
Published	Jun 8, 2026
Last Updated	Jun 8, 2026

Stay Ahead of the Next One

Get instant alerts for sourcecodester onlne examination & learning management system

Be the first to know when new medium vulnerabilities affecting sourcecodester onlne examination & learning management system are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:P/RL:X/RC:R

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

Affected Versions

SourceCodester / Onlne Examination & Learning Management System

1.0

SourceCodester / Syllabus-aligned Learning Management and Examination System

1.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗

vuldb.com: https://vuldb.com/vuln/369162 vuldb.com: https://vuldb.com/vuln/369162/cti vuldb.com: https://vuldb.com/cve/CVE-2026-11552 vuldb.com: https://vuldb.com/submit/836751 sourcecodester.com: https://www.sourcecodester.com/

Credits

🔍 Kamran Saifullah (VulDB User) VulDB Vulnerability Moderation Team