#PHPEMS

CVE-2026-6573: Server-Side Request Forgery in PHPEMS A vulnerability was detected in PHPEMS 11.0. This affects the function temppage of the file /app/exam/controller/exams.master.php of the component Instant Exam Creation Handler. The manipulation of the argument uploadfile results in server-

PHPEMS 11.0 faces MEDIUM severity SSRF (CVE-2026-6573) via Instant Exam Creation Handler — public exploit available. Check your security stance now! radar.offseq.com/threat/cve-2026-6573-ser... #OffSeq #PHPEMS #SSRF