Sourcecodester Online Exam Form Submission vulnerabilities

CVE-2025-10627 [MEDIUM] CWE-74 CVE-2025-10627: A vulnerability has been found in SourceCodester Online Exam Form Submission 1.0. This affects an un A vulnerability has been found in SourceCodester Online Exam Form Submission 1.0. This affects an unknown part of the file /admin/delete_user.php. Such manipulation of the argument ID leads to sql injection. The attack can be executed remotely. The exploit has been disclosed to the public and may be used.

CVE-2025-10626 [MEDIUM] CWE-74 CVE-2025-10626: A flaw has been found in SourceCodester Online Exam Form Submission 1.0. Affected by this issue is s A flaw has been found in SourceCodester Online Exam Form Submission 1.0. Affected by this issue is some unknown functionality of the file /admin/update_s3.php. This manipulation of the argument credits causes sql injection. Remote exploitation of the attack is possible. The exploit has been published and may be used.

CVE-2025-10602 [MEDIUM] CWE-74 CVE-2025-10602: A vulnerability was found in SourceCodester Online Exam Form Submission 1.0. Affected by this vulner A vulnerability was found in SourceCodester Online Exam Form Submission 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/delete_s1.php. Performing manipulation of the argument ID results in sql injection. The attack can be initiated remotely. The exploit has been made public and could be used.

CVE-2025-10600 [MEDIUM] CWE-284 CVE-2025-10600: A flaw has been found in SourceCodester Online Exam Form Submission 1.0. This impacts an unknown fun A flaw has been found in SourceCodester Online Exam Form Submission 1.0. This impacts an unknown function of the file /register.php. This manipulation of the argument img causes unrestricted upload. It is possible to initiate the attack remotely. The exploit has been published and may be used.

CVE-2025-10625 [MEDIUM] CWE-74 CVE-2025-10625: A vulnerability was detected in SourceCodester Online Exam Form Submission 1.0. Affected by this vul A vulnerability was detected in SourceCodester Online Exam Form Submission 1.0. Affected by this vulnerability is an unknown functionality of the file /user/dashboard.php?page=update_profile. The manipulation of the argument phone results in sql injection. The attack may be launched remotely. The exploit is now public and may be used. Other parameter

CVE-2025-10596 [MEDIUM] CWE-74 CVE-2025-10596: A vulnerability was found in SourceCodester Online Exam Form Submission 1.0. This affects an unknown A vulnerability was found in SourceCodester Online Exam Form Submission 1.0. This affects an unknown part of the file /index.php. The manipulation of the argument usn results in sql injection. The attack can be launched remotely. The exploit has been made public and could be used.

CVE-2025-10601 [MEDIUM] CWE-74 CVE-2025-10601: A vulnerability has been found in SourceCodester Online Exam Form Submission 1.0. Affected is an unk A vulnerability has been found in SourceCodester Online Exam Form Submission 1.0. Affected is an unknown function of the file /admin/index.php. Such manipulation of the argument email leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

CVE-2023-3059 [MEDIUM] CWE-89 CVE-2023-3059: A vulnerability, which was classified as critical, was found in SourceCodester Online Exam Form Subm A vulnerability, which was classified as critical, was found in SourceCodester Online Exam Form Submission 1.0. This affects an unknown part of the file /admin/update_s6.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The ident