الثغرات ›

CVE-2026-5670

متوسط

CWE-284 — نوع الضعف

                    نُشر: Apr 6, 2026                      ·  آخر تحديث: Apr 9, 2026                      ·  المصدر: NVD                

CVSS v3

6.3

🔗 NVD الرسمي

📄 الوصف (الإنجليزية)

A vulnerability was found in Cyber-III Student-Management-System up to 1a938fa61e9f735078e9b291d2e6215b4942af3f. This issue affects the function move_uploaded_file of the file /AssignmentSection/submission/upload.php. Performing a manipulation of the argument File results in unrestricted upload. The attack can be initiated remotely. The exploit has been made public and could be used. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor updated releases are available. The project was informed of the problem early through an issue report but has not responded yet.

🤖 ملخص AI

CVE-2026-5670 is a medium-severity unrestricted file upload vulnerability in Cyber-III Student-Management-System affecting the assignment submission module. The vulnerability allows remote attackers to upload arbitrary files by manipulating the File parameter, potentially leading to remote code execution or malware distribution. With no patch available and the project unresponsive, immediate compensating controls are critical for affected Saudi educational institutions.

📄 الوصف (العربية)

🤖 التحليل الذكي آخر تحليل: May 21, 2026 14:32

🇸🇦 التأثير على المملكة العربية السعودية

This vulnerability primarily impacts Saudi educational institutions using Cyber-III Student-Management-System, including universities, colleges, and technical institutes. Secondary impact extends to government education sector (Ministry of Education), private educational providers, and any organization using this system for student assignment management. The vulnerability could enable unauthorized access to student data, injection of malicious content into educational platforms, and potential compromise of institutional networks. Risk is elevated in institutions with limited cybersecurity resources and those managing sensitive student information.

🏢 القطاعات السعودية المتأثرة

Education (Universities, Colleges, Technical Institutes) Government (Ministry of Education) Private Educational Providers Training Centers Online Learning Platforms

🎯 تقنيات MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1199 - Trusted Relationship T1566.002 - Phishing: Spearphishing Link T1204.002 - User Execution: Malicious File T1105 - Ingress Tool Transfer T1059 - Command and Scripting Interpreter

⚖️ درجة المخاطر السعودية (AI)

6.8

/ 10.0

🔧 Remediation Steps (English)

IMMEDIATE ACTIONS:

1. Identify all instances of Cyber-III Student-Management-System in your organization and isolate affected servers from production networks if possible

2. Disable the assignment upload functionality (/AssignmentSection/submission/upload.php) until remediation is available

3. Review access logs for suspicious file uploads and unauthorized access attempts

4. Implement network-level file type restrictions at the WAF/proxy level

COMPENSATING CONTROLS:

1. Deploy Web Application Firewall (WAF) rules to block requests to /AssignmentSection/submission/upload.php containing suspicious file extensions (.php, .exe, .sh, .jsp, etc.)

2. Implement strict file type validation at the web server level using MIME type checking and magic number verification

3. Configure web server to prevent execution of scripts in upload directories (disable PHP/script execution in upload folders)

4. Restrict upload directory permissions to read-only for web server process

5. Store uploaded files outside web root directory

6. Implement file size limits and rate limiting on upload endpoints

DETECTION:

1. Monitor for POST requests to /AssignmentSection/submission/upload.php with unusual file extensions

2. Alert on successful uploads of executable file types (.php, .exe, .sh, .jsp, .asp, .aspx)

3. Track failed upload attempts and multiple rapid upload requests from single IP

4. Monitor for newly created executable files in upload directories

LONG-TERM:

1. Contact Cyber-III development team for security patch status

2. Evaluate alternative student management systems with active security support

3. Plan migration away from unsupported software

4. Implement code review process if source code is available

🔧 خطوات المعالجة (العربية)

الإجراءات الفورية:

1. حدد جميع نسخ نظام إدارة الطلاب Cyber-III في مؤسستك وعزل الخوادم المتأثرة عن شبكات الإنتاج إن أمكن

2. عطل وظيفة تحميل المهام (/AssignmentSection/submission/upload.php) حتى يتوفر التصحيح

3. راجع سجلات الوصول للتحميلات المريبة ومحاولات الوصول غير المصرح بها

4. طبق قيود نوع الملف على مستوى الشبكة في جدار الحماية/الوكيل

الضوابط التعويضية:

1. نشر قواعد جدار حماية تطبيقات الويب (WAF) لحجب الطلبات إلى /AssignmentSection/submission/upload.php التي تحتوي على امتدادات ملفات مريبة

2. تطبيق التحقق الصارم من نوع الملف على مستوى خادم الويب باستخدام التحقق من نوع MIME

3. تكوين خادم الويب لمنع تنفيذ البرامج النصية في مجلدات التحميل

4. تقييد أذونات مجلد التحميل للقراءة فقط

5. تخزين الملفات المحملة خارج جذر الويب

6. تطبيق حدود حجم الملف والحد من معدل الطلبات

الكشف:

1. مراقبة طلبات POST إلى /AssignmentSection/submission/upload.php بامتدادات ملفات غير عادية

2. تنبيهات عند التحميل الناجح لأنواع ملفات قابلة للتنفيذ

3. تتبع محاولات التحميل الفاشلة والطلبات السريعة المتعددة من عنوان IP واحد

4. مراقبة الملفات القابلة للتنفيذ المنشأة حديثاً في مجلدات التحميل

المدى الطويل:

1. اتصل بفريق تطوير Cyber-III لمعرفة حالة التصحيح الأمني

2. قيّم أنظمة إدارة الطلاب البديلة ذات الدعم الأمني النشط

3. خطط للهجرة بعيداً عن البرامج غير المدعومة

4. طبق عملية مراجعة الأكواد إذا كان الكود المصدري متاحاً

📋 خريطة الامتثال التنظيمي

🟢 NCA ECC 2024

A.14.2.1 - Information security requirements analysis and specification A.14.2.5 - Access control in development and test environments A.8.3.1 - User registration and access rights management A.12.2.1 - Monitoring of information processing activities

🔵 SAMA CSF

ID.AM-2 - Software, platforms, and applications within the organization are inventoried PR.AC-1 - Identities and credentials are issued, managed, verified, revoked, and audited PR.DS-2 - Data-in-transit is protected DE.CM-1 - The network is monitored to detect potential cybersecurity events

🟡 ISO 27001:2022

A.8.1.1 - Inventory of assets A.8.3.1 - User registration and access rights management A.12.2.1 - Monitoring of information processing activities A.14.2.1 - Information security requirements analysis and specification

🟣 PCI DSS v4.0.1

6.2 - Ensure that all system components and software are protected from known vulnerabilities 6.5.1 - Injection flaws 6.5.8 - Improper access control

🔗 المراجع والمصادر 5

🔗

https://github.com/Cyber-III/Student-Management-System/

cna@vuldb.com

🔗

https://github.com/Cyber-III/Student-Management-System/issues/241

cna@vuldb.com

🔗

https://vuldb.com/submit/786022

cna@vuldb.com

🔗

https://vuldb.com/vuln/355492

cna@vuldb.com

🔗

https://vuldb.com/vuln/355492/cti

cna@vuldb.com

📊 CVSS Score

6.3

/ 10.0 — متوسط

📊 CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Attack VectorN — None / Network

Attack ComplexityL — Low / Local

Privileges RequiredL — Low / Local

User InteractionN — None / Network

ScopeU — Unchanged

ConfidentialityL — Low / Local

IntegrityL — Low / Local

AvailabilityL — Low / Local

📋 حقائق سريعة

الخطورة متوسط

CVSS Score6.3

CWECWE-284

EPSS0.04%

اختراق متاح لا

تصحيح متاح ✗ لا

تاريخ النشر 2026-04-06

المصدر nvd

المشاهدات 6

🇸🇦 درجة المخاطر السعودية

6.8

/ 10.0 — مخاطر السعودية

أولوية: HIGH

🏷️ الوسوم

CWE-284

⚡ إجراءات

🔗 NVD Official Page ⚡ Exploit-DB Search 🐙 GitHub PoC Search 🎯 MITRE ATT&CK 📊 CVE Details

CVE-2026-5670

عرّفنا بنفسك

تسجيل الدخول مطلوب