CVE-2026-11532
MediumCVSS 6.3Summary
A weakness has been identified in the imvks786 student management system affecting an unknown function of the file /add.php of the Student Record Handler component. Executing a manipulation can lead to improper access controls.
Risk Assessment
An attacker may exploit this vulnerability remotely, posing a risk of unauthorized access to student data. The publicly available exploit increases the likelihood of attacks.
Recommendation
It is recommended to immediately update the system to the latest version and monitor access to the Student Record Handler component to detect potential attack attempts.
Original NVD description (English source)
A weakness has been identified in imvks786 student_management_system up to 9599b560ad3c3b83e75d328b76bedcd489ef1f46. Affected is an unknown function of the file /add.php of the component Student Record Handler. Executing a manipulation can lead to improper access controls. The attack may be performed from remote. The exploit has been made available to the public and could be used for attacks. This product utilizes a rolling release system for continuous delivery, and as such, version information for affected or updated releases is not disclosed. The project was informed of the problem early through an issue report but has not responded yet.

