CVE-2026-7741

MEDIUM NVD

CVSS Score 6.3

Severity MEDIUM

Published May 04, 2026

Vendor unknown

Description

A vulnerability was detected in CodeAstro Online Classroom 1.0. Impacted is an unknown function of the file /OnlineClassroom/studentlogin. Performing a manipulation of the argument sid results in sql injection. Remote exploitation of the attack is possible. The exploit is now public and may be used.

References

https://codeastro.com/
https://github.com/yuji0903/silver-guide/issues/18
https://vuldb.com/submit/807692
https://vuldb.com/vuln/360916
https://vuldb.com/vuln/360916/cti