CVE-2026-11485

Description

A security vulnerability has been detected in SourceCodester Class and Exam Timetabling System 1.0. Affected is an unknown function of the file /archive2.php. Such manipulation of the argument sy leads to sql injection. The attack may be launched remotely. The exploit has been disclosed publicly and may be used.

References

• https://github.com/ssaaaa1234/cve/issues/2
• https://vuldb.com/cve/CVE-2026-11485
• https://vuldb.com/submit/834110
• https://vuldb.com/vuln/369105
• https://vuldb.com/vuln/369105/cti