59 matches found
CVE-2026-2058
The CVE-2026-2058 entry affects mathurvishal CloudClassroom-PHP-Project (Post Query Details Page, postquerypublic.php). A SQL injection arises from unsafely handling the gnamex parameter in the Post Query functionality, allowing remote attackers to inject SQL via POST requests to /postquerypublic...
EUVD-2025-18756
Malicious code in bioql PyPI...
EUVD-2025-16669
Malicious code in bioql PyPI...
EUVD-2025-22708
Malicious code in bioql PyPI...
EUVD-2025-23284
Malicious code in bioql PyPI...
EUVD-2025-23370
Malicious code in bioql PyPI...
EUVD-2025-5286
Malicious code in bioql PyPI...
CVE-2025-50868
A SQL Injection vulnerability exists in the takeassessment2.php file of CloudClassroom-PHP-Project 1.0. The Q4 POST parameter is not properly sanitized before being used in SQL queries...
CVE-2025-50866
CloudClassroom-PHP-Project 1.0 contains a reflected Cross-site Scripting XSS vulnerability in the email parameter of the postquerypublic endpoint. Improper sanitization allows an attacker to inject arbitrary JavaScript code that executes in the context of the user s browser, potentially leading t...
CVE-2025-50868
A SQL Injection vulnerability exists in the takeassessment2.php file of CloudClassroom-PHP-Project 1.0. The Q4 POST parameter is not properly sanitized before being used in SQL queries...
CVE-2025-50868
A SQL Injection vulnerability exists in the takeassessment2.php file of CloudClassroom-PHP-Project 1.0. The Q4 POST parameter is not properly sanitized before being used in SQL queries...
CVE-2025-50868
CVE-2025-50868 affects CloudClassroom-PHP-Project 1.0, specifically the takeassessment2.php file where the Q4 POST parameter is not properly sanitized before being used in SQL queries, enabling SQL injection. The CVSS v3.1 base score is 6.5 (Medium) with low confidentiality/integrity impact and n...
PT-2025-31658 · Unknown · Cloudclassroom-Php Project
Name of the Vulnerable Software and Affected Versions: CloudClassroom-PHP-Project version 1.0 Description: A SQL Injection issue exists in the takeassessment2.php file. The Q4 POST parameter is not properly sanitized before being used in SQL queries. Recommendations: Ensure proper sanitization of...
CVE-2025-50866
CloudClassroom-PHP-Project 1.0 contains a reflected Cross-site Scripting XSS vulnerability in the email parameter of the postquerypublic endpoint. Improper sanitization allows an attacker to inject arbitrary JavaScript code that executes in the context of the user s browser, potentially leading t...
CVE-2025-50867
A SQL Injection vulnerability exists in the takeassessment2.php endpoint of the CloudClassroom-PHP-Project 1.0, where the Q5 POST parameter is directly embedded in SQL statements without sanitization...
CVE-2025-50866
CloudClassroom-PHP-Project 1.0 contains a reflected Cross-site Scripting XSS vulnerability in the email parameter of the postquerypublic endpoint. Improper sanitization allows an attacker to inject arbitrary JavaScript code that executes in the context of the user s browser, potentially leading t...
CVE-2025-50866
CVE-2025-50866 concerns CloudClassroom-PHP-Project 1.0, which contains a reflected Cross-site Scripting (XSS) vulnerability in the email parameter of the /postquerypublic endpoint. The vulnerability arises from improper sanitization of user-supplied input, allowing an attacker to inject JavaScrip...
CVE-2025-50867
A SQL Injection vulnerability exists in the takeassessment2.php endpoint of the CloudClassroom-PHP-Project 1.0, where the Q5 POST parameter is directly embedded in SQL statements without sanitization...
CVE-2025-44608
CloudClassroom-PHP Project v1.0 was discovered to contain a SQL injection vulnerability via the viewid parameter...
CVE-2025-44608
CloudClassroom-PHP Project v1.0 was discovered to contain a SQL injection vulnerability via the viewid parameter...