56 matches found
CodeAstro Internet Banking System Cross-Site Scripting Vulnerability
CodeAstro Internet Banking System is a PHP online banking system from CodeAstro. A cross-site scripting vulnerability exists in CodeAstro Internet Banking System version 1.0, which stems from the parameter Client Full Name in the file pagesclientsignup.php that can lead to cross-site scripting...
PT-2024-15809 · Unknown · Codeastro Internet Banking System
Name of the Vulnerable Software and Affected Versions: CodeAstro Internet Banking System version 1.0 Description: A problematic vulnerability was found in the CodeAstro Internet Banking System, affecting an unknown functionality of the file pages client signup.php. The manipulation of the Client...
CVE-2024-0194
A vulnerability, which was classified as critical, has been found in CodeAstro Internet Banking System up to 1.0. This issue affects some unknown processing of the file pagesaccount.php of the component Profile Picture Handler. The manipulation leads to unrestricted upload. The attack may be...
CVE-2024-0194 CodeAstro Internet Banking System Profile Picture pages_account.php unrestricted upload
A vulnerability, which was classified as critical, has been found in CodeAstro Internet Banking System up to 1.0. This issue affects some unknown processing of the file pagesaccount.php of the component Profile Picture Handler. The manipulation leads to unrestricted upload. The attack may be...
CVE-2024-0194
CodeAstro Internet Banking System up to version 1.0 is affected by CVE-2024-0194 in the Profile Picture Handler component (pages_account.php). The vulnerability enables unrestricted file upload and may be exploited remotely. Multiple connected sources confirm the issue and the presence of an expl...
CVE-2023-5699
A vulnerability, which was classified as problematic, has been found in CodeAstro Internet Banking System 1.0. This issue affects some unknown processing of the file pagesviewclient.php. The manipulation of the argument accname with the input Johnnie Reyes'"&%alert5646 leads to cross site...
CVE-2023-5699
A vulnerability, which was classified as problematic, has been found in CodeAstro Internet Banking System 1.0. This issue affects some unknown processing of the file pagesviewclient.php. The manipulation of the argument accname with the input Johnnie Reyes'"&%alert5646 leads to cross site...
CVE-2023-5697
A vulnerability classified as problematic has been found in CodeAstro Internet Banking System 1.0. This affects an unknown part of the file pageswithdrawmoney.php. The manipulation of the argument accountnumber with the input 287359614--alert1234!-- leads to cross site scripting. It is possible t...
Cross site scripting
A vulnerability, which was classified as problematic, has been found in CodeAstro Internet Banking System 1.0. This issue affects some unknown processing of the file pagesviewclient.php. The manipulation of the argument accname with the input Johnnie Reyes'"&%alert5646 leads to cross site...
Cross site scripting
A vulnerability classified as problematic has been found in CodeAstro Internet Banking System 1.0. This affects an unknown part of the file pageswithdrawmoney.php. The manipulation of the argument accountnumber with the input 287359614--alert1234!-- leads to cross site scripting. It is possible t...
CVE-2023-5699 CodeAstro Internet Banking System pages_view_client.php cross site scripting
A vulnerability, which was classified as problematic, has been found in CodeAstro Internet Banking System 1.0. This issue affects some unknown processing of the file pagesviewclient.php. The manipulation of the argument accname with the input Johnnie Reyes'"&%alert5646 leads to cross site...
CVE-2023-5699
CVE-2023-5699 : CodeAstro Internet Banking System 1.0 contains a cross-site scripting (XSS) issue in the pages_view_client.php file. The vulnerability arises from unsafely handling the acc_name parameter, where crafted input (e.g., Johnnie Reyes'"()&%) can lead to script execution in a victim’s b...
CVE-2023-5699 CodeAstro Internet Banking System pages_view_client.php cross site scripting
A vulnerability, which was classified as problematic, has been found in CodeAstro Internet Banking System 1.0. This issue affects some unknown processing of the file pagesviewclient.php. The manipulation of the argument accname with the input Johnnie Reyes'"&%alert5646 leads to cross site...
CVE-2023-5695
A vulnerability was found in CodeAstro Internet Banking System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file pagesresetpwd.php. The manipulation of the argument email with the input testing%40example.com'%26%25alert9860 leads to...
CVE-2023-5693
A vulnerability was found in CodeAstro Internet Banking System 1.0 and classified as critical. This issue affects some unknown processing of the file pagesresetpwd.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploit has been...
CVE-2023-5696
A vulnerability was found in CodeAstro Internet Banking System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file pagestransfermoney.php. The manipulation of the argument accountnumber with the input 357146928--alert9206!-- leads to cross site...
CVE-2023-5695
A vulnerability was found in CodeAstro Internet Banking System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file pagesresetpwd.php. The manipulation of the argument email with the input testing%40example.com'%26%25alert9860 leads to...
CVE-2023-5694
A vulnerability was found in CodeAstro Internet Banking System 1.0. It has been classified as problematic. Affected is an unknown function of the file pagessystemsettings.php. The manipulation of the argument sysname with the input alert991 leads to cross site scripting. It is possible to launch...
CVE-2023-5694
A vulnerability was found in CodeAstro Internet Banking System 1.0. It has been classified as problematic. Affected is an unknown function of the file pagessystemsettings.php. The manipulation of the argument sysname with the input alert991 leads to cross site scripting. It is possible to launch...
CVE-2023-5693
A vulnerability was found in CodeAstro Internet Banking System 1.0 and classified as critical. This issue affects some unknown processing of the file pagesresetpwd.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploit has been...