CVE-2026-8097

MEDIUM NVD

CVSS Score 6.3

Severity MEDIUM

Published May 07, 2026

Vendor unknown

Description

A security flaw has been discovered in CodeAstro Online Classroom 1.0. This vulnerability affects unknown code of the file /askquery.php. The manipulation of the argument squeryx results in sql injection. The attack may be performed from remote. The exploit has been released to the public and may be used for attacks.

References

http://github.com/suze233/CVE/issues/1
https://codeastro.com/
https://vuldb.com/submit/808115
https://vuldb.com/vuln/361849
https://vuldb.com/vuln/361849/cti