Is CVE-2026-13521 being exploited?

No public exploit is currently tracked.

How severe is CVE-2026-13521?

CVE-2026-13521 has a CVSS v3 severity of HIGH (7.3).

Back

CVE-2026-13521

Description

A vulnerability was identified in SourceCodester Class and Exam Timetabling System 1.0/5.php. Affected by this vulnerability is an unknown functionality of the file /preview5.php. Such manipulation of the argument course_year_section leads to sql injection. The attack may be performed from remote. The exploit is publicly available and might be used.