Bl4Dsc4N

**Name of the Vulnerable Software and Affected Versions** mathurvishal CloudClassroom-PHP-Project versions prior to 5dadec098bfbbf3300d60c3494db3fb95b66e7be **Description** A flaw exists in the Post Query Details Page component of mathurvishal CloudClassroom-PHP-Project. The issue involves a SQL injection vulnerability in the `/postquerypublic.php` file. Manipulation of the `gnamex` argument within an unknown function causes the SQL injection. The attack can be carried out remotely. The exploit has been published. **Recommendations** Update to a version prior to 5dadec098bfbbf3300d60c3494db3fb95b66e7be.