CVE-2026-9583
Information Exposure via Error Message in CET Automated Grading System
Publication date: 2026-05-26
Last updated on: 2026-05-26
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| sourcecodester | cet_automated_grading_system | 1.0 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-209 | The product generates an error message that includes sensitive information about its environment, users, or associated data. |
| CWE-200 | The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in the SourceCodester CET Automated Grading System with AI Predictive Analytics 1.0, specifically in an unknown function within the /index.php file of the SQL Handler component.
An attacker can manipulate this vulnerability remotely to cause information exposure through error messages.
The exploit for this vulnerability has been made publicly available, which increases the risk of attacks.
How can this vulnerability impact me? :
The primary impact of this vulnerability is information exposure, which means sensitive data could be revealed unintentionally through error messages.
Since the attack can be performed remotely and the exploit is publicly available, it increases the risk of unauthorized access to information.
The vulnerability has a low to moderate severity score (CVSS v3.1 score of 4.3), indicating limited impact beyond information disclosure.