CVE-2026-10619
sayan365 student-management-system improper authentication
Vexday Risk Score
33Atenção
Decisão SSVC (CISA)
Attend
PoC disponível → acompanhar de perto
CVSS 6.9EPSS 0.5%KEV nãoPoC públicaNuclei —Metasploit —Patch —
Ciclo de vida
02 jun 2026Publicada no NVD
Recomendação: Planejar correção próxima — já existe PoC pública.
A vulnerability was detected in sayan365 student-management-system up to 7f3c9ce7d410332335c2affac93a385485051800. This impacts an unknown function. The manipulation results in improper authentication. The attack can be executed remotely. The exploit is now public and may be used. This product implements a rolling release for ongoing delivery, which means version information for affected or updated releases is unavailable. Multiple endpoints are affected. The project was informed of the problem early through an issue report but has not responded yet.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P
Produtos afetados
sayan365 · student-management-systemPoCs públicas encontradas — 1
cve_referencegithub.com/sayan365/student-management-system/issues/4não verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
https://github.com/sayan365/student-management-system/https://github.com/sayan365/student-management-system/issues/3https://github.com/sayan365/student-management-system/issues/4https://vuldb.com/cve/CVE-2026-10619https://vuldb.com/submit/829545https://vuldb.com/submit/829562https://vuldb.com/submit/829566https://vuldb.com/submit/829567https://vuldb.com/submit/829568https://vuldb.com/submit/829569https://vuldb.com/vuln/367927https://vuldb.com/vuln/367927/cti