📧 info@ciso.sa | 📱 +966550939344 | Riyadh, Kingdom of Saudi Arabia
About FAQ Contact Us Terms of Service Privacy Policy 🌐 العربية
🔐

Welcome — Sign in or create an account for full access.

🔑 Sign In ✨ Register
🌐 العربية Sign In Create Account
🔧 Scheduled Maintenance — Saturday 2:00-4:00 AM AST. Some features may be temporarily unavailable.    ●   
💎
Pro Plan 50% Off Unlock all AI features, unlimited reports, and priority support. Upgrade
Search Center
ESC to close
navigate open Ctrl+K search
CISO Consulting
Global phishing Cross-sector HIGH 2h Global apt Education CRITICAL 2h Global vulnerability Enterprise Software / ERP Systems CRITICAL 3h Global vulnerability IT Infrastructure CRITICAL 3h Global vulnerability Technology and Software Development HIGH 4h Global vulnerability Enterprise IT and Government CRITICAL 4h Global ransomware Multiple Sectors / Enterprise CRITICAL 5h Global general Technology and Legal MEDIUM 6h Global ransomware Financial Services / Cryptocurrency CRITICAL 6h Global general Industrial Control Systems / Operational Technology HIGH 7h Global phishing Cross-sector HIGH 2h Global apt Education CRITICAL 2h Global vulnerability Enterprise Software / ERP Systems CRITICAL 3h Global vulnerability IT Infrastructure CRITICAL 3h Global vulnerability Technology and Software Development HIGH 4h Global vulnerability Enterprise IT and Government CRITICAL 4h Global ransomware Multiple Sectors / Enterprise CRITICAL 5h Global general Technology and Legal MEDIUM 6h Global ransomware Financial Services / Cryptocurrency CRITICAL 6h Global general Industrial Control Systems / Operational Technology HIGH 7h Global phishing Cross-sector HIGH 2h Global apt Education CRITICAL 2h Global vulnerability Enterprise Software / ERP Systems CRITICAL 3h Global vulnerability IT Infrastructure CRITICAL 3h Global vulnerability Technology and Software Development HIGH 4h Global vulnerability Enterprise IT and Government CRITICAL 4h Global ransomware Multiple Sectors / Enterprise CRITICAL 5h Global general Technology and Legal MEDIUM 6h Global ransomware Financial Services / Cryptocurrency CRITICAL 6h Global general Industrial Control Systems / Operational Technology HIGH 7h
Vulnerabilities

CVE-2026-5578

Medium
A vulnerability was found in CodeAstro Online Classroom 1.0. This vulnerability affects unknown code of the file /Online
CWE-74 — Weakness Type
Published: Apr 5, 2026  ·  Modified: Apr 8, 2026  ·  Source: NVD
CVSS v3
6.3
🔗 NVD Official
📄 Description (English)

A vulnerability was found in CodeAstro Online Classroom 1.0. This vulnerability affects unknown code of the file /OnlineClassroom/addassessment.php of the component Parameter Handler. Performing a manipulation of the argument deleteid results in sql injection. The attack is possible to be carried out remotely. The exploit has been made public and could be used.

🤖 AI Executive Summary

CVE-2026-5578 is a SQL injection vulnerability in CodeAstro Online Classroom 1.0 affecting the addassessment.php file's deleteid parameter. With a CVSS score of 6.3 (medium) and publicly disclosed exploit code, this vulnerability allows remote attackers to manipulate database queries without authentication. The lack of available patches makes immediate mitigation critical for educational institutions using this platform.

📄 Description (Arabic)

🤖 AI Intelligence Analysis Analyzed: May 19, 2026 09:32
🇸🇦 Saudi Arabia Impact Assessment
This vulnerability poses significant risk to Saudi educational institutions, particularly universities and online learning centers using CodeAstro platform. Potential impacts include: unauthorized access to student assessment data, manipulation of grades and academic records, exposure of personal information (names, IDs, contact details), and compromise of instructor credentials. Secondary risk to government education sector (Ministry of Education) if any affiliated institutions use this platform. Healthcare training programs and corporate training divisions also at risk if using this LMS.
🏢 Affected Saudi Sectors
Education (Universities, Online Learning Centers) Government (Ministry of Education) Healthcare (Medical Training Programs) Corporate Training E-Learning Providers
⚖️ Saudi Risk Score (AI)
7.2
/ 10.0
🔧 Remediation Steps (English)
IMMEDIATE ACTIONS:

1. Identify all instances of CodeAstro Online Classroom 1.0 in your environment

2. Isolate affected systems from production networks if possible

3. Review access logs for the /OnlineClassroom/addassessment.php endpoint for suspicious activity

4. Check database audit logs for unauthorized queries



COMPENSATING CONTROLS (until patch available):

1. Implement Web Application Firewall (WAF) rules to block requests containing SQL injection patterns in deleteid parameter

2. Apply input validation: whitelist only numeric values for deleteid parameter

3. Disable or restrict access to addassessment.php to authorized administrators only

4. Implement database-level access controls and least privilege principles

5. Enable SQL query logging and monitoring for anomalous patterns



DETECTION RULES:

- Monitor for requests to /OnlineClassroom/addassessment.php with deleteid containing: quotes, semicolons, SQL keywords (UNION, SELECT, DROP, INSERT)

- Alert on database error messages in application logs

- Track unusual database query patterns or failed authentication attempts



LONG-TERM:

1. Upgrade to patched version when available

2. Consider migrating to actively maintained LMS platforms (Moodle, Canvas, Blackboard)

3. Implement Web Application Firewall with SQL injection detection

4. Conduct security code review of custom modifications
🔧 خطوات المعالجة (العربية)
الإجراءات الفورية:

1. تحديد جميع نسخ CodeAstro Online Classroom 1.0 في بيئتك

2. عزل الأنظمة المتأثرة عن شبكات الإنتاج إن أمكن

3. مراجعة سجلات الوصول لنقطة نهاية /OnlineClassroom/addassessment.php للنشاط المريب

4. فحص سجلات تدقيق قاعدة البيانات للاستعلامات غير المصرح بها



الضوابط البديلة (حتى توفر التصحيح):

1. تطبيق قواعد جدار حماية تطبيقات الويب لحجب الطلبات التي تحتوي على أنماط حقن SQL في معامل deleteid

2. تطبيق التحقق من الإدخال: السماح فقط بالقيم الرقمية لمعامل deleteid

3. تعطيل أو تقييد الوصول إلى addassessment.php للمسؤولين المصرح لهم فقط

4. تطبيق ضوابط الوصول على مستوى قاعدة البيانات ومبدأ أقل امتياز

5. تفعيل تسجيل وتراقبة استعلامات SQL للأنماط الشاذة



قواعد الكشف:

- مراقبة الطلبات إلى /OnlineClassroom/addassessment.php مع deleteid يحتوي على: علامات اقتباس، فواصل منقوطة، كلمات SQL (UNION, SELECT, DROP, INSERT)

- تنبيهات رسائل خطأ قاعدة البيانات في سجلات التطبيق

- تتبع أنماط استعلامات قاعدة البيانات غير العادية



المدى الطويل:

1. الترقية إلى النسخة المصححة عند توفرها

2. النظر في الهجرة إلى منصات LMS مدعومة بنشاط

3. تطبيق جدار حماية تطبيقات الويب مع كشف حقن SQL

4. إجراء مراجعة أمان الكود للتعديلات المخصصة
📋 Regulatory Compliance Mapping
🟢 NCA ECC 2024
A.14.2.1 - Secure development policy A.14.2.5 - Secure development environment A.12.6.1 - Management of technical vulnerabilities A.12.2.1 - Input validation
🔵 SAMA CSF
ID.BE-5 - Organizational resilience PR.DS-6 - Data is protected from unauthorized access DE.CM-1 - The network is monitored for unauthorized connections RS.MI-1 - Incidents are contained
🟡 ISO 27001:2022
A.14.2.1 - Secure development policy and procedures A.14.2.5 - Secure development environment A.12.6.1 - Management of technical vulnerabilities A.13.1.3 - Segregation of networks
🟣 PCI DSS v4.0.1
6.5.1 - Injection flaws 6.2 - Security patches and updates 11.2 - Vulnerability scanning
📊 CVSS Score
6.3
/ 10.0 — Medium
📊 CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Attack VectorN — None / Network
Attack ComplexityL — Low / Local
Privileges RequiredL — Low / Local
User InteractionN — None / Network
ScopeU — Unchanged
ConfidentialityL — Low / Local
IntegrityL — Low / Local
AvailabilityL — Low / Local
📋 Quick Facts
Severity Medium
CVSS Score6.3
CWECWE-74
EPSS0.01%
Exploit No
Patch ✗ No
Published 2026-04-05
Source Feed nvd
Views 4
🇸🇦 Saudi Risk Score
7.2
/ 10.0 — Saudi Risk
Priority: HIGH
🏷️ Tags
CWE-74
⚡ Actions
🔗 NVD Official Page ⚡ Exploit-DB Search 🐙 GitHub PoC Search 🎯 MITRE ATT&CK 📊 CVE Details
Share this CVE
LinkedIn X / Twitter WhatsApp Telegram
📣 Found this valuable?
Share it with your cybersecurity network
in LinkedIn 𝕏 X / Twitter 💬 WhatsApp ✈ Telegram
🍪 Privacy Preferences
CISO Consulting — Compliant with Saudi Personal Data Protection Law (PDPL)
We use cookies and similar technologies to provide the best experience on our platform. You can choose which types you accept.
🔒
Essential Always On
Required for the website to function properly. Cannot be disabled.
📋 Sessions, CSRF tokens, authentication, language preferences
📊
Analytics
Help us understand how visitors use the site and improve performance.
📋 Page views, session duration, traffic sources, performance metrics
⚙️
Functional
Enable enhanced features like content personalization and preferences.
📋 Dark/light theme, font size, custom dashboards, saved filters
📣
Marketing
Used to deliver content and ads relevant to your interests.
📋 Campaign tracking, retargeting, social media analytics
Privacy Policy →
CISO AI Assistant
Ask anything · Documents · Support
🔐

Introduce Yourself

Enter your details to access the full assistant

Your info is private and never shared
💬
CyberAssist
Online · responds in seconds
5 / 5
🔐 Verify Your Identity

Enter your email to receive a verification code before submitting a support request.

Enter to send · / for commands 0 / 2000
CISO AI · Powered by Anthropic Claude
✦ Quick Survey Help Us Improve CISO Consulting Your feedback shapes the future of our platform — takes less than 2 minutes.
⚠ Please answer this question to continue

How would you rate your overall experience with our platform?

Rate from 1 (poor) to 5 (excellent)

🎉
Thank you!
Your response has been recorded.