CVE-2026-16155

CVE-2026-16155CVE-2026-16155

Description

A vulnerability was identified in SourceCodester Class and Exam Timetabling System 1.0. Affected by this issue is some unknown functionality of the file /schoolyr.php. The manipulation of the argument sy leads to cross site scripting. It is possible to initiate the attack remotely. The exploit is publicly available and might be used.

Scoring

CVSS 3.5 ()
VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
Last modified2026-07-18
Sourced from NVD. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.