CVE-2026-9583— SourceCodester CET Automated Grading System with AI Predictive Analytics SQL index.php information exposure
Possible ATT&CK Techniques 3AI
T1059 · Command and Scripting Interpreter T1059.004 · Unix Shell T1005 · Data from Local SystemGet alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-9583
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SourceCodester CET Automated Grading System with AI Predictive Analytics SQL index.php information exposure
Source: NVD (National Vulnerability Database)
Vulnerability Description
A weakness has been identified in SourceCodester CET Automated Grading System with AI Predictive Analytics 1.0. This impacts an unknown function of the file /index.php of the component SQL Handler. Executing a manipulation can lead to information exposure through error message. The attack may be performed from remote. The exploit has been made available to the public and could be used for attacks.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
通过错误消息导致的信息暴露
Source: NVD (National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| SourceCodester | CET Automated Grading System with AI Predictive Analytics | 1.0 | cpe:2.3:a:sourcecodester:cet_automated_grading_system_with_ai_predictive_analytics:*:*:*:*:*:*:*:* |
II. Public POCs for CVE-2026-9583
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-9583
请登录查看更多情报信息。
Proof of Concept for CVE-2026-9583 (2)
Other References for CVE-2026-9583 (1)
Same Patch Batch · SourceCodester · 2026-05-26 · 4 CVEs total
| CVE-2026-9603 | 6.5 MEDIUM | SourceCodester eDoc Doctor Appointment System delete-session.php authorization |
| CVE-2026-9582 | 4.3 MEDIUM | SourceCodester CET Automated Grading System with AI Predictive Analytics cross-site reques |
| CVE-2026-9564 | 2.4 LOW | SourceCodester/oretnom23 Hospitals Patient Records Management System view_patient cross si |
IV. Related Vulnerabilities
Same vendor: SourceCodester
- CVE-2026-9603
SourceCodester eDoc Doctor Appointment System delete-session - CVE-2026-9582
SourceCodester CET Automated Grading System with AI Predicti - CVE-2026-9564
SourceCodester/oretnom23 Hospitals Patient Records Managemen - CVE-2026-9486
SourceCodester Student Grades Management System cross-site r - CVE-2026-9485
SourceCodester Student Grades Management System students.php
Same weakness: CWE-209
- CVE-2026-45728
Algernon: Single-file mode unconditionally enables debug mod - CVE-2026-5511
Information Disclosure via Diagnostic Interface Due to Impro - CVE-2026-7860
Possible information disclosure of environment variables in - CVE-2026-42552
Flight: Sensitive information disclosure via default error h - CVE-2026-44002
vm2: Host File Path Disclosure via Stack Trace Information L
V. Comments for CVE-2026-9583
No comments yet