CVE-2026-10619

medium

Description

A vulnerability was detected in sayan365 student-management-system up to 7f3c9ce7d410332335c2affac93a385485051800. This impacts an unknown function. The manipulation results in improper authentication. The attack can be executed remotely. The exploit is now public and may be used. This product implements a rolling release for ongoing delivery, which means version information for affected or updated releases is unavailable. Multiple endpoints are affected. The project was informed of the problem early through an issue report but has not responded yet.

References

https://vuldb.com/vuln/367927/cti

https://vuldb.com/vuln/367927

https://vuldb.com/submit/829569

https://vuldb.com/submit/829568

https://vuldb.com/submit/829567

https://vuldb.com/submit/829566

https://vuldb.com/submit/829562

https://vuldb.com/submit/829545

https://vuldb.com/cve/CVE-2026-10619

https://github.com/sayan365/student-management-system/issues/4

https://github.com/sayan365/student-management-system/issues/3

https://github.com/sayan365/student-management-system/

Details

Source: Mitre, NVD

Published: 2026-06-02

Updated: 2026-06-04

Risk Information

CVSS v2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Severity: High

CVSS v3

Base Score: 7.3

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Severity: High

CVSS v4

Base Score: 6.9

Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N

Severity: Medium

EPSS

EPSS: 0.00093