CVEDB API

Vulnerabilities

Vulnerable Software

Vishalmathur: Security Vulnerabilities

CVE-2025-46178

Cross-Site Scripting (XSS) vulnerability exists in askquery.php via the eid parameter in the CloudClassroom PHP Project. This allows remote attackers to inject arbitrary JavaScript in the context of a victim s browser session by sending a crafted URL, leading to session hijacking or defacement.

CVSS Score

6.1

EPSS Score

0.002

Published

2025-06-09

CVE-2025-45542

SQL injection vulnerability in the registrationform endpoint of CloudClassroom-PHP-Project v1.0. The pass parameter is vulnerable due to improper input validation, allowing attackers to inject SQL queries.

CVSS Score

7.3

EPSS Score

0.007

Published

2025-06-02

CVE-2024-57459

A time-based SQL injection vulnerability exists in mydetailsstudent.php in the CloudClassroom PHP Project 1.0. The myds parameter does not properly validate user input, allowing an attacker to inject arbitrary SQL commands.

CVSS Score

7.3

EPSS Score

0.002

Published

2025-06-02

CVE-2024-57423

A Cross Site Scripting vulnerability in CloudClassroom-PHP Project v1.0 allows a remote attacker to execute arbitrary code via the exid parameter of the assessment function.

CVSS Score

6.1

EPSS Score

0.003

Published

2025-02-26

Page 2

Vulnerabilities

Vulnerable Software

Vishalmathur: Security Vulnerabilities

Products

Pricing

Contact Us