CVE-2026-8097 PUBLISHED

A security flaw has been discovered in CodeAstro Online Classroom 1.0. This vulnerability affects unknown code of the file /askquery.php. The manipulation of the argument squeryx results in sql injection. The attack may be performed from remote. The exploit has been released to the public and may be used for attacks.

• Kun Liang (VulDB User) reporter

• VDB-361849 | CodeAstro Online Classroom askquery.php sql injection
• VDB-361849 | CTI Indicators (IOB, IOC, TTP, IOA)
• Submit #808115 | codeastro Online Classroom V1.0 SQL Injection
• http://github.com/suze233/CVE/issues/1
• https://codeastro.com/

• SQL Injection CWE
• Injection CWE