VYPR

CloudClassroom-PHP

by CloudClassroom-PHP

CVEs (7)

  • CVE-2025-46179CriJun 20, 2025
    risk 0.64cvss 9.8epss 0.01

    A SQL Injection vulnerability was discovered in the askquery.php file of CloudClassroom-PHP Project v1.0. The squeryx parameter accepts unsanitized input, which is passed directly into backend SQL queries.

  • CVE-2025-26199CriJun 18, 2025
    risk 0.64cvss 9.8epss 0.00

    CloudClassroom-PHP-Project v1.0 is affected by an insecure credential transmission vulnerability. The application transmits passwords over unencrypted HTTP during the login process, exposing sensitive credentials to potential interception by network-based attackers. A remote…

  • CVE-2025-26198CriJun 18, 2025
    risk 0.64cvss 9.8epss 0.01

    CloudClassroom-PHP-Project v1.0 contains a critical SQL Injection vulnerability in the loginlinkadmin.php component. The application fails to sanitize user-supplied input in the admin login form before directly including it in SQL queries. This allows unauthenticated attackers…

  • CVE-2024-57459HigJun 2, 2025
    risk 0.47cvss 7.3epss 0.00

    A time-based SQL injection vulnerability exists in mydetailsstudent.php in the CloudClassroom PHP Project 1.0. The myds parameter does not properly validate user input, allowing an attacker to inject arbitrary SQL commands.

  • CVE-2025-44608MedJul 25, 2025
    risk 0.42cvss 6.5epss 0.00

    CloudClassroom-PHP Project v1.0 was discovered to contain a SQL injection vulnerability via the viewid parameter.

  • CVE-2025-46178MedJun 9, 2025
    risk 0.40cvss 6.1epss 0.00

    Cross-Site Scripting (XSS) vulnerability exists in askquery.php via the eid parameter in the CloudClassroom PHP Project. This allows remote attackers to inject arbitrary JavaScript in the context of a victim s browser session by sending a crafted URL, leading to session…

  • CVE-2024-57423MedFeb 26, 2025
    risk 0.40cvss 6.1epss 0.00

    A Cross Site Scripting vulnerability in CloudClassroom-PHP Project v1.0 allows a remote attacker to execute arbitrary code via the exid parameter of the assessment function.