A vulnerability was found in SourceCodester Student Grades Management System 1.0. Affected is an unknown function of the file grades.php. Performing a manipulation of the argument student_id results in improper authorization. The attack ma…

CVE-2026-9484MEDIUMCVSS 6.3EG 6.3

2026-05-25

A vulnerability was determined in SourceCodester Student Grades Management System 1.0. Affected by this vulnerability is the function getClassroomStudents/removeStudentFromClassroom of the file classroom.php. Executing a manipulation of th…

CVE-2026-9517HIGHCVSS 7.3EG 7.3

2026-05-26

A vulnerability was determined in hemant6488 CodeIgniter-StudentManagementSystem. The affected element is an unknown function of the file /index.php/students/addStudentView of the component Student Management Handler. Executing a manipulat…

CVE-2026-9562HIGHCVSS 7.3EG 7.3

2026-05-26

A vulnerability has been found in sambitraj STUDENT-MANAGEMENT-SYSTEM up to 56ba287f2e9031523ccb4244cb6e3fe530e4e5d5. The affected element is an unknown function of the component Dashboard. Such manipulation leads to improper access contro…

CVE-2026-9579MEDIUMCVSS 6.3EG 6.3

2026-05-26

A vulnerability was found in JeecgBoot up to 3.9.1. Impacted is the function user.getUsername of the file /sys/user/login/setting/userEdit of the component SysUser. The manipulation of the argument userIdentity results in improper access c…

CVE-2026-9580HIGHCVSS 7.3EG 7.3

2026-05-26

A vulnerability was determined in JeecgBoot up to 3.9.1. The affected element is the function LoginController.selectDepart of the file /sys/selectDepart. This manipulation causes improper access controls. Remote exploitation of the attack …

CVE-2026-9581MEDIUMCVSS 6.3EG 6.3

2026-05-26

A vulnerability was identified in JeecgBoot up to 3.9.1. The impacted element is an unknown function of the file /sys/comment/add. Such manipulation leads to improper access controls. The attack can be executed remotely. The exploit is pub…

CVE-2026-9604MEDIUMCVSS 4.3EG 4.3

2026-05-26

A vulnerability was detected in JeecgBoot up to 3.9.1. This vulnerability affects unknown code of the component AiragModelController. The manipulation of the argument list/queryById results in improper access controls. The attack can be ex…

CVE-2026-9795HIGHCVSS 7.3EG 7.3

2026-05-28

A flaw was found in Keycloak's Fine-Grained Admin Permissions (FGAPv2) feature. An administrator with limited client management permissions can exploit this vulnerability to assign any realm role, including highly privileged roles, to a cl…

CWE-266

CVEs classified under CWE-266page 19 of 19

Map vulnerabilities like CWE-266 to your infrastructure