Lucene search
K

56 matches found

CNNVD
CNNVD
added 2024/01/21 12:0 a.m.4 views

CodeAstro Internet Banking System Cross-Site Scripting Vulnerability

CodeAstro Internet Banking System is a PHP online banking system from CodeAstro. A cross-site scripting vulnerability exists in CodeAstro Internet Banking System version 1.0, which stems from the parameter Client Full Name in the file pagesclientsignup.php that can lead to cross-site scripting...

5.4CVSS5.9AI score0.00562EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/01/21 12:0 a.m.7 views

PT-2024-15809 · Unknown · Codeastro Internet Banking System

Name of the Vulnerable Software and Affected Versions: CodeAstro Internet Banking System version 1.0 Description: A problematic vulnerability was found in the CodeAstro Internet Banking System, affecting an unknown functionality of the file pages client signup.php. The manipulation of the Client...

5.4CVSS6.9AI score0.00562EPSS
Exploits1References7
NVD
NVD
added 2024/01/02 9:15 p.m.23 views

CVE-2024-0194

A vulnerability, which was classified as critical, has been found in CodeAstro Internet Banking System up to 1.0. This issue affects some unknown processing of the file pagesaccount.php of the component Profile Picture Handler. The manipulation leads to unrestricted upload. The attack may be...

9.8CVSS7.2AI score0.00738EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2024/01/02 8:31 p.m.6 views

CVE-2024-0194 CodeAstro Internet Banking System Profile Picture pages_account.php unrestricted upload

A vulnerability, which was classified as critical, has been found in CodeAstro Internet Banking System up to 1.0. This issue affects some unknown processing of the file pagesaccount.php of the component Profile Picture Handler. The manipulation leads to unrestricted upload. The attack may be...

6.5CVSS9.6AI score0.00738EPSS
Exploits1References3
CVE
CVE
added 2024/01/02 8:31 p.m.74 views

CVE-2024-0194

CodeAstro Internet Banking System up to version 1.0 is affected by CVE-2024-0194 in the Profile Picture Handler component (pages_account.php). The vulnerability enables unrestricted file upload and may be exploited remotely. Multiple connected sources confirm the issue and the presence of an expl...

9.8CVSS9.4AI score0.00738EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2023/10/23 12:15 a.m.5 views

CVE-2023-5699

A vulnerability, which was classified as problematic, has been found in CodeAstro Internet Banking System 1.0. This issue affects some unknown processing of the file pagesviewclient.php. The manipulation of the argument accname with the input Johnnie Reyes'"&%alert5646 leads to cross site...

6.1CVSS3.8AI score0.00505EPSS
Exploits1References3
NVD
NVD
added 2023/10/23 12:15 a.m.27 views

CVE-2023-5699

A vulnerability, which was classified as problematic, has been found in CodeAstro Internet Banking System 1.0. This issue affects some unknown processing of the file pagesviewclient.php. The manipulation of the argument accname with the input Johnnie Reyes'"&%alert5646 leads to cross site...

6.1CVSS4.5AI score0.00505EPSS
Exploits1References3
NVD
NVD
added 2023/10/23 12:15 a.m.21 views

CVE-2023-5697

A vulnerability classified as problematic has been found in CodeAstro Internet Banking System 1.0. This affects an unknown part of the file pageswithdrawmoney.php. The manipulation of the argument accountnumber with the input 287359614--alert1234!-- leads to cross site scripting. It is possible t...

6.1CVSS4.5AI score0.00505EPSS
Exploits1References3
Prion
Prion
added 2023/10/23 12:15 a.m.16 views

Cross site scripting

A vulnerability, which was classified as problematic, has been found in CodeAstro Internet Banking System 1.0. This issue affects some unknown processing of the file pagesviewclient.php. The manipulation of the argument accname with the input Johnnie Reyes'"&%alert5646 leads to cross site...

4CVSS6AI score0.00505EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2023/10/23 12:15 a.m.17 views

Cross site scripting

A vulnerability classified as problematic has been found in CodeAstro Internet Banking System 1.0. This affects an unknown part of the file pageswithdrawmoney.php. The manipulation of the argument accountnumber with the input 287359614--alert1234!-- leads to cross site scripting. It is possible t...

4CVSS6AI score0.00505EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/10/22 11:31 p.m.2 views

CVE-2023-5699 CodeAstro Internet Banking System pages_view_client.php cross site scripting

A vulnerability, which was classified as problematic, has been found in CodeAstro Internet Banking System 1.0. This issue affects some unknown processing of the file pagesviewclient.php. The manipulation of the argument accname with the input Johnnie Reyes'"&%alert5646 leads to cross site...

4CVSS6.4AI score0.00505EPSS
Exploits1References3
CVE
CVE
added 2023/10/22 11:31 p.m.51 views

CVE-2023-5699

CVE-2023-5699 : CodeAstro Internet Banking System 1.0 contains a cross-site scripting (XSS) issue in the pages_view_client.php file. The vulnerability arises from unsafely handling the acc_name parameter, where crafted input (e.g., Johnnie Reyes'"()&%) can lead to script execution in a victim’s b...

6.1CVSS4.8AI score0.00505EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2023/10/22 11:31 p.m.26 views

CVE-2023-5699 CodeAstro Internet Banking System pages_view_client.php cross site scripting

A vulnerability, which was classified as problematic, has been found in CodeAstro Internet Banking System 1.0. This issue affects some unknown processing of the file pagesviewclient.php. The manipulation of the argument accname with the input Johnnie Reyes'"&%alert5646 leads to cross site...

4CVSS6.2AI score0.00505EPSS
Exploits1References3
OSV
OSV
added 2023/10/22 11:15 p.m.5 views

CVE-2023-5695

A vulnerability was found in CodeAstro Internet Banking System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file pagesresetpwd.php. The manipulation of the argument email with the input testing%40example.com'%26%25alert9860 leads to...

6.1CVSS3.8AI score0.00505EPSS
Exploits1References3
NVD
NVD
added 2023/10/22 11:15 p.m.19 views

CVE-2023-5693

A vulnerability was found in CodeAstro Internet Banking System 1.0 and classified as critical. This issue affects some unknown processing of the file pagesresetpwd.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploit has been...

9.8CVSS7.4AI score0.00649EPSS
Exploits1References3
NVD
NVD
added 2023/10/22 11:15 p.m.24 views

CVE-2023-5696

A vulnerability was found in CodeAstro Internet Banking System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file pagestransfermoney.php. The manipulation of the argument accountnumber with the input 357146928--alert9206!-- leads to cross site...

6.1CVSS4.4AI score0.00472EPSS
Exploits1References3
NVD
NVD
added 2023/10/22 11:15 p.m.25 views

CVE-2023-5695

A vulnerability was found in CodeAstro Internet Banking System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file pagesresetpwd.php. The manipulation of the argument email with the input testing%40example.com'%26%25alert9860 leads to...

6.1CVSS4.5AI score0.00505EPSS
Exploits1References3
NVD
NVD
added 2023/10/22 11:15 p.m.29 views

CVE-2023-5694

A vulnerability was found in CodeAstro Internet Banking System 1.0. It has been classified as problematic. Affected is an unknown function of the file pagessystemsettings.php. The manipulation of the argument sysname with the input alert991 leads to cross site scripting. It is possible to launch...

6.1CVSS4.5AI score0.00505EPSS
Exploits1References3
OSV
OSV
added 2023/10/22 11:15 p.m.4 views

CVE-2023-5694

A vulnerability was found in CodeAstro Internet Banking System 1.0. It has been classified as problematic. Affected is an unknown function of the file pagessystemsettings.php. The manipulation of the argument sysname with the input alert991 leads to cross site scripting. It is possible to launch...

6.1CVSS3.8AI score0.00505EPSS
Exploits1References3
OSV
OSV
added 2023/10/22 11:15 p.m.5 views

CVE-2023-5693

A vulnerability was found in CodeAstro Internet Banking System 1.0 and classified as critical. This issue affects some unknown processing of the file pagesresetpwd.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploit has been...

9.8CVSS5.7AI score0.00649EPSS
Exploits1References3
Rows per page
Query Builder