CVE-2026-7401

· NIST NVD ↗

A vulnerability was detected in SourceCodester CET Automated Grading System with AI Predictive Analytics 1.0. This vulnerability affects unknown code of the file /index.php?action=register of the component Registration. The manipulation of the argument student_id/full_name/section/username results in cross site scripting. The attack can be launched remotely. The exploit is now public and may be used.

MEDIUM
CVSS severity
4.3
CVSS base score
2026-04-29
Published

CWE codes

CWE-79CWE-94

Sources