CVE-2025-52410

Institute-of-Current-Students v1.0 contains a time-based blind SQL injection vulnerability in the mydetailsstudent.php endpoint. The myds GET parameter is not adequately sanitized before being used in SQL queries...

Institute-of-Current-Students 安全漏洞

Institute-of-Current-Students is a school management website by the individual developer Vishal Mathur. A security vulnerability exists in version 1.0 of Institute-of-Current-Students, which stems from improper access control of the myds GET parameter in the file mydetailsstudent.php, which could...

CVE-2025-50870

The CVE-2025-50870 affects Institute-of-Current-Students version 1.0, where the mydetailsstudent.php endpoint's myds GET parameter accepts an email and returns the corresponding student’s personal information without validating the requester’s identity or permissions. This Incorrect Access Contro...

CVE-2024-57459

A time-based SQL injection vulnerability exists in mydetailsstudent.php in the CloudClassroom PHP Project 1.0. The myds parameter does not properly validate user input, allowing an attacker to inject arbitrary SQL commands...

PT-2025-23534 · Unknown · Cloudclassroom-Php Project

Name of the Vulnerable Software and Affected Versions: CloudClassroom PHP Project version 1.0 Description: A time-based SQL injection issue exists due to improper validation of user input in the myds parameter of the mydetailsstudent.php file. This allows an attacker to inject arbitrary SQL...