CVE-2026-14770

Severity CVSS v4.0:
MEDIUM
Type:
CWE-74 Injection
Publication date:
05/07/2026
Last modified:
05/07/2026

Description

A vulnerability was detected in SourceCodester Class and Exam Timetabling System 1.0. Impacted is an unknown function of the file /edit_room.php. Performing a manipulation of the argument ID results in sql injection. It is possible to initiate the attack remotely. The exploit is now public and may be used.