CVE-2026-14734
Severity CVSS v4.0:
MEDIUM
Type:
CWE-74
Injection
Publication date:
05/07/2026
Last modified:
05/07/2026
Description
A flaw has been found in SourceCodester Class and Exam Timetabling System 1.0. Impacted is an unknown function of the file /edit_product.php. This manipulation of the argument ID causes sql injection. Remote exploitation of the attack is possible. The exploit has been published and may be used.
Impact
Base Score 4.0
5.50
Severity 4.0
MEDIUM
Base Score 3.x
7.30
Severity 3.x
HIGH
Base Score 2.0
7.50
Severity 2.0
HIGH



