Primary

Context

SourceCodester Student Grades Management System Improper Authorization Vulnerability in grades.php

Vulnerability

An improper authorization vulnerability has been identified in SourceCodester Student Grades Management System version 1.0. The issue arises in an unknown function of the file grades.php, where manipulation of the student_id argument leads to unauthorized access. This vulnerability can be exploited remotely and has been made public.

Impact

Exploitation of this vulnerability allows for improper authorization, potentially leading to unauthorized access or actions within the application.

Reproduction

To reproduce this vulnerability, send a request to grades.php with a manipulated student_id argument. This will bypass authorization checks and gain unauthorized access or privileges.

Added: May 26, 2026, 6:49 PM

Updated: May 26, 2026, 6:49 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

8.7

remediation

0.0

relevance

9.4

threat

6.4

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

8.7

remediation

0.0

relevance

9.4

threat

6.4

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

SourceCodester Student Grades Management System Improper Authorization Vulnerability in grades.php

Vulnerability

Impact

Reproduction

Affected Products

SourceCodester Student Grades Management System

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating