CVE-2026-13566

A vulnerability was identified in SourceCodester Class and Exam Timetabling System 1.0. Affected by this issue is some unknown functionality of the file /preview3.php. The manipulation of the argument course_year_section leads to sql injection. The attack may be initiated remotely. The exploit is publicly available and might be used.
Configurations

No configuration.

History

29 Jun 2026, 14:16

Type Values Removed Values Added
New CVE

Information

Published : 2026-06-29 14:16

Updated : 2026-06-30 16:16


NVD link : CVE-2026-13566

Mitre link : CVE-2026-13566

CVE.ORG link : CVE-2026-13566


JSON object : View

Products Affected

No product.

CWE
CWE-74

Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')