CVE-2026-7745

A vulnerability was determined in CodeAstro Online Classroom 1.0. This impacts an unknown function of the file /OnlineClassroom/facultydetails. This manipulation of the argument deleteid causes sql injection. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and...

medium 6.3 CVSS 3.1

Published: May 4, 2026

Modified: May 4, 2026

Description

A vulnerability was determined in CodeAstro Online Classroom 1.0. This impacts an unknown function of the file /OnlineClassroom/facultydetails. This manipulation of the argument deleteid causes sql injection. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilized.

References

https://codeastro.com/
https://github.com/yuji0903/silver-guide/issues/22
https://vuldb.com/submit/807697
https://vuldb.com/vuln/360920
https://vuldb.com/vuln/360920/cti

Version	3.1
Score	6.3 / 10
Severity	medium