CVE-2026-11585 – CodeAstro Student Attendance Management System createClassArms.php sql injection

CVE ID :CVE-2026-11585

Published : June 8, 2026, 9:16 p.m. | 1 hour, 18 minutes ago

Description :A vulnerability was determined in CodeAstro Student Attendance Management System 1.0. Affected is an unknown function of the file /attendance-php/Admin/createClassArms.php. This manipulation of the argument classId causes sql injection. The attack can be initiated remotely. The exploit has been publicly disclosed and may be utilized.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-40215 – OpenVPN Use-After-Free Race Condition

CVE-2026-44541 – Fides: DOM-based XSS vulnerability in fides.js via fides_description override

CVE-2026-49141 – WACRM Authorization Bypass via Automation Engine Endpoint

CVE-2026-47345 – TYPO3 HTML Sanitizer allows Cross-Site Scripting