CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

CVE-2026-14778

highCVSS 7.3covered by 1 sourcefirst seen 2026-07-06
A security vulnerability has been detected in SourceCodester Onlne Examination & Learning Management System 1.0. This affects an unknown part of the file /ajax_enroll.php of the component Enrollment Management. The manipulation of the argument student_id/schedule_id/action leads to improper authorization. The attack is possible to be carried out remotely. The exploit has been disclosed publicly and may be used. The name of the affected product appears to have a typo in it.

⚡ Watch CVE-2026-14778

Get an email if CVE-2026-14778 is added to CISA KEV, gains public exploit code, or a new advisory cites it — max one per day, one-click unsubscribe.

Exploitation outlook

Advisory coverage (1)

External references

NVD record for CVE-2026-14778

CVE.org record

Embed the live status

CVE-2026-14778 live status badge — this badge updates automatically when the KEV or exploit status changes. How to embed it →

[![CVE-2026-14778 status](https://www.csirts.com/badge/CVE-2026-14778)](https://www.csirts.com/cve/CVE-2026-14778)