CVE-2026-5531

MEDIUM 5.3

SourceCodester Student Result Management System HTTP GET Request login_credentials.txt cleartext storage in file

CVSS Score

5.3

EPSS Score

0.0%

EPSS Percentile

6th

A vulnerability has been found in SourceCodester Student Result Management System 1.0. Impacted is an unknown function of the file /login_credentials.txt of the component HTTP GET Request Handler. The manipulation leads to cleartext storage in a file or on disk. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

CWE	CWE-313 CWE-312
Vendor	sourcecodester
Product	student result management system
Published	Apr 5, 2026
Last Updated	Apr 6, 2026

Stay Ahead of the Next One

Get instant alerts for sourcecodester student result management system

Be the first to know when new medium vulnerabilities affecting sourcecodester student result management system are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:P/RL:W/RC:R

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

Affected Versions

SourceCodester / Student Result Management System

1.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗

vuldb.com: https://vuldb.com/vuln/355284 vuldb.com: https://vuldb.com/vuln/355284/cti vuldb.com: https://vuldb.com/submit/782157 drive.google.com: https://drive.google.com/file/d/1moQEev6skJoIe7UlL6YyR2xGgX5smeXb/view?usp=sharing sourcecodester.com: https://www.sourcecodester.com/

Credits

🔍 Humraaz21 (VulDB User)