CVE Catalog

CVE-2026-11336

MediumCVSS 6.3
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.04%

13th percentile - higher than 13% of all known CVEs

Summary

A vulnerability has been found in the CollegeManagementSystem affecting an unknown function in the dashboard_page/admin_page.php file of the Admin Interface component. Manipulation of the UserAuthData argument leads to improper authorization.

Risk Assessment

An attacker may remotely exploit this vulnerability, posing a serious risk to the security of the system and user data. The public disclosure of the exploit increases the likelihood of attacks.

Recommendation

It is recommended to immediately update the system to the latest version and monitor for any unauthorized access attempts. Additional security measures should also be considered.

Original NVD description (English source)

A vulnerability has been found in tittuvarghese CollegeManagementSystem 3e476335cfbfb9a049e09f474c7ec885f69a9df3/a38852979f7e27ae67b610dce5979500ef8ebe01. Affected is an unknown function of the file dashboard_page/admin_page.php of the component Admin Interface. The manipulation of the argument UserAuthData leads to improper authorization. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. This product uses a rolling release model to deliver continuous updates. As a result, specific version information for affected or updated releases is not available. The project was informed of the problem early through an issue report but has not responded yet.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS