CVE-2025-44608

CloudClassroom-PHP Project v1.0 was discovered to contain a SQL injection vulnerability via the viewid parameter...

CVE-2025-44608

CloudClassroom-PHP Project v1.0 was discovered to contain a SQL injection vulnerability via the viewid parameter...

PT-2025-30847 · Unknown · Cloudclassroom-Php Project

Name of the Vulnerable Software and Affected Versions: CloudClassroom-PHP Project version 1.0 Description: The CloudClassroom-PHP Project is susceptible to a SQL injection issue through the viewid parameter. Recommendations: As a temporary workaround, consider restricting access to the viewid...

CVE-2025-44608

CVE-2025-44608 affects CloudClassroom-PHP Project version 1.0, with a SQL injection vulnerability injectable via the viewid parameter. Root cause: unvalidated input in viewid leads to SQL injection. Practical impact stated in connected docs includes potential remote code execution (RCE) demonstra...

Exploit for SQL Injection in Vishalmathur Cloudclassroom-Php_Project

CVE-2025-44608 CloudClassroom-PHP Project v1.0 is vulnerable...

📄 CloudClassroom-PHP-Project 1.0 SQL Injection

CloudClassroom-PHP-Project version 1.0 suffers from a remote SQL injection vulnerability that allows for login bypass. 🛡️ CVE Disclosure: CVE-2025-26198 — SQL Injection in CloudClassroom-PHP-Project Disclosure Date: 18 June 2025 CVE ID: CVE-2025-26198 Severity: CRITICAL CVSS 9.8 --- 🧩 Summary A...

CVE-2025-46179

A SQL Injection vulnerability was discovered in the askquery.php file of CloudClassroom-PHP Project v1.0. The squeryx parameter accepts unsanitized input, which is passed directly into backend SQL queries...

CVE-2025-26199

CloudClassroom-PHP-Project v1.0 is affected by an insecure credential transmission vulnerability. The application transmits passwords over unencrypted HTTP during the login process, exposing sensitive credentials to potential interception by network-based attackers. A remote attacker with access ...

CVE-2025-46179

A SQL Injection vulnerability was discovered in the askquery.php file of CloudClassroom-PHP Project v1.0. The squeryx parameter accepts unsanitized input, which is passed directly into backend SQL queries...

CVE-2025-46179

A SQL Injection vulnerability was discovered in the askquery.php file of CloudClassroom-PHP Project v1.0. The squeryx parameter accepts unsanitized input, which is passed directly into backend SQL queries...

CVE-2025-46179

A SQL Injection vulnerability was discovered in the askquery.php file of CloudClassroom-PHP Project v1.0. The squeryx parameter accepts unsanitized input, which is passed directly into backend SQL queries...

CVE-2025-46179

A SQL Injection vulnerability was discovered in the askquery.php file of CloudClassroom-PHP Project v1.0. The squeryx parameter accepts unsanitized input, which is passed directly into backend SQL queries...

CVE-2025-46179

CloudClassroom-PHP Project v1.0 contains a SQL injection in askquery.php via the unsanitized squeryx parameter, which is passed directly into backend SQL queries. This vulnerability has a CVSSv3.1 base score of 9.8 (CRITICAL) with network attack vector, low attack complexity, no privileges, no us...

CloudClassroom-PHP-Project 安全漏洞

CloudClassroom-PHP-Project is a cloud classroom website by the individual developer Vishal Mathur. A security vulnerability exists in CloudClassroom-PHP-Project version 1.0, which stems from an uncleared squeryx parameter in the askquery.php file, which could lead to a SQL injection attack...

PT-2025-26326 · Unknown · Cloudclassroom-Php Project

Name of the Vulnerable Software and Affected Versions: CloudClassroom-PHP Project version 1.0 Description: A SQL Injection issue was discovered in the askquery.php file. The squeryx parameter accepts unsanitized input, which is passed directly into backend SQL queries. Recommendations: For...

CVE-2025-26199

CloudClassroom-PHP-Project v1.0 is affected by an insecure credential transmission vulnerability. The application transmits passwords over unencrypted HTTP during the login process, exposing sensitive credentials to potential interception by network-based attackers. A remote attacker with access ...

CVE-2025-26198

CloudClassroom-PHP-Project v1.0 contains a critical SQL Injection vulnerability in the loginlinkadmin.php component. The application fails to sanitize user-supplied input in the admin login form before directly including it in SQL queries. This allows unauthenticated attackers to inject arbitrary...

CVE-2025-26198

CloudClassroom-PHP-Project v1.0 contains a critical SQL Injection vulnerability in the loginlinkadmin.php component. The application fails to sanitize user-supplied input in the admin login form before directly including it in SQL queries. This allows unauthenticated attackers to inject arbitrary...

CVE-2025-26199

CloudClassroom-PHP-Project v1.0 is affected by an insecure credential transmission vulnerability. The application transmits passwords over unencrypted HTTP during the login process, exposing sensitive credentials to potential interception by network-based attackers. A remote attacker with access ...

CVE-2025-26199

CloudClassroom-PHP-Project v1.0 is affected by insecure credential transmission: login credentials are sent over HTTP, enabling MitM exposure. A compromised session could allow an attacker to login and potentially trigger administrative actions (e.g., file uploads) leading to remote code executio...