Unrated severityNVD Advisory· Published Jun 2, 2025· Updated Jun 2, 2025

CVE-2024-57459

Description

A time-based SQL injection vulnerability exists in mydetailsstudent.php in the CloudClassroom PHP Project 1.0. The myds parameter does not properly validate user input, allowing an attacker to inject arbitrary SQL commands.

Affected products

CloudClassroom PHP Project/CloudClassroom PHP Projectdescription
CloudClassroom-PHP/CloudClassroom-PHPllm-fuzzy
Range: = 1.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

gist.github.com/b0mk35h/921cfa00f9ea1af66645574537d38587mitre
owasp.org/www-community/attacks/SQL_Injectionmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000