CVE-2026-5580 | CodeAstro Online Classroom 1.0 Parameter addvideos.php videotitle sql injection

Inserito da Angelo Barbosa | Apr 4, 2026 | CVE

A vulnerability, which was classified as critical, has been found in CodeAstro Online Classroom 1.0. Impacted is an unknown function of the file /OnlineClassroom/addvideos.php of the component Parameter Handler. The manipulation of the argument videotitle leads to sql injection.

This vulnerability is traded as CVE-2026-5580. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2026-5580 | CodeAstro Online Classroom 1.0 Parameter addvideos.php videotitle sql injection

Post correlati

CVE-2025-46320 | Claris FileMaker Server up to 21.1.6/22.0.3 cross site scripting

CVE-2026-4214 | D-Link DNS-1550-04 up to 20260205 /cgi-bin/app_mgr.cgi UPnP_AV_Server_Path_Setting stack-based overflow

CVE-2024-30306 | Adobe Acrobat Reader up to 20.005.30539/23.008.20470 File out-of-bounds (apsb24-07)

CVE-2025-13142 | Custom Post Type Plugin up to 1.0 on WordPress cross-site request forgery