Vishalmathur Cloudclassroom-php Project — known CVE vulnerabilities
Every CVE whose affected-product data names Vishalmathur Cloudclassroom-php Project, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2025-26198 — CVSS 9.8 (critical): CloudClassroom-PHP-Project v1.0 contains a critical SQL Injection vulnerability in the loginlinkadmin.php component. The application fails…
CVE-2025-26199 — CVSS 9.8 (critical): CloudClassroom-PHP-Project v1.0 is affected by an insecure credential transmission vulnerability. The application transmits passwords over…
CVE-2025-46179 — CVSS 9.8 (critical): A SQL Injection vulnerability was discovered in the askquery.php file of CloudClassroom-PHP Project v1.0. The squeryx parameter accepts…
CVE-2025-45542 — CVSS 7.3 (high): SQL injection vulnerability in the registrationform endpoint of CloudClassroom-PHP-Project v1.0. The pass parameter is vulnerable due to…
CVE-2024-57459 — CVSS 7.3 (high): A time-based SQL injection vulnerability exists in mydetailsstudent.php in the CloudClassroom PHP Project 1.0. The myds parameter does not…
CVE-2025-44608 — CVSS 6.5 (medium): CloudClassroom-PHP Project v1.0 was discovered to contain a SQL injection vulnerability via the viewid parameter.
CVE-2025-46178 — CVSS 6.1 (medium): Cross-Site Scripting (XSS) vulnerability exists in askquery.php via the eid parameter in the CloudClassroom PHP Project. This allows remote…
CVE-2024-57423 — CVSS 6.1 (medium): A Cross Site Scripting vulnerability in CloudClassroom-PHP Project v1.0 allows a remote attacker to execute arbitrary code via the exid…