CVE-2026-8097

MEDIUM CVSS 6.3 View on NVD ↗

Description

A security flaw has been discovered in CodeAstro Online Classroom 1.0. This vulnerability affects unknown code of the file /askquery.php. The manipulation of the argument squeryx results in sql injection. The attack may be performed from remote. The exploit has been released to the public and may be used for attacks.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

References

http://github.com/suze233/CVE/issues/1
https://codeastro.com/
https://vuldb.com/submit/808115
https://vuldb.com/vuln/361849
https://vuldb.com/vuln/361849/cti

Published: May 07, 2026 21:16 UTC Modified: May 07, 2026 21:16 UTC