Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1434 matches found

OSV
OSVadded 2024/01/05 7:15 p.m.1 views

CVE-2024-0247

A vulnerability classified as critical was found in CodeAstro Online Food Ordering System 1.0. This vulnerability affects unknown code of the file /admin/ of the component Admin Panel. The manipulation of the argument Username leads to sql injection. The attack can be initiated remotely. The...

9.8CVSS5.7AI score
Exploits0References3
Prion
Prionadded 2024/01/05 7:15 p.m.20 views

Sql injection

A vulnerability classified as critical was found in CodeAstro Online Food Ordering System 1.0. This vulnerability affects unknown code of the file /admin/ of the component Admin Panel. The manipulation of the argument Username leads to sql injection. The attack can be initiated remotely. The...

7.5CVSS7.8AI score0.00779EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichmentadded 2024/01/05 7:0 p.m.13 views

CVE-2024-0247 CodeAstro Online Food Ordering System Admin Panel sql injection

A vulnerability classified as critical was found in CodeAstro Online Food Ordering System 1.0. This vulnerability affects unknown code of the file /admin/ of the component Admin Panel. The manipulation of the argument Username leads to sql injection. The attack can be initiated remotely. The...

7.5CVSS7.5AI score0.00779EPSS
Exploits1References3
Cvelist
Cvelistadded 2024/01/05 7:0 p.m.31 views

CVE-2024-0247 CodeAstro Online Food Ordering System Admin Panel sql injection

A vulnerability classified as critical was found in CodeAstro Online Food Ordering System 1.0. This vulnerability affects unknown code of the file /admin/ of the component Admin Panel. The manipulation of the argument Username leads to sql injection. The attack can be initiated remotely. The...

7.5CVSS10AI score0.00779EPSS
Exploits1References3
CVE
CVEadded 2024/01/05 7:0 p.m.45 views

CVE-2024-0247

CVE-2024-0247 affects CodeAstro Online Food Ordering System v1.0, specifically the Admin Panel’s unknown code in the /admin/ path. The vulnerability is a SQL injection triggered by manipulating the Username parameter in the Admin Panel, with remote exploitation and public disclosure of the exploi...

9.8CVSS9.7AI score0.00779EPSS
Exploits1References3Affected Software1
OSV
OSVadded 2024/01/02 9:15 p.m.2 views

CVE-2024-0194

A vulnerability, which was classified as critical, has been found in CodeAstro Internet Banking System up to 1.0. This issue affects some unknown processing of the file pagesaccount.php of the component Profile Picture Handler. The manipulation leads to unrestricted upload. The attack may be...

9.8CVSS5.2AI score
Exploits0References3
NVD
NVDadded 2024/01/02 9:15 p.m.20 views

CVE-2024-0194

A vulnerability, which was classified as critical, has been found in CodeAstro Internet Banking System up to 1.0. This issue affects some unknown processing of the file pagesaccount.php of the component Profile Picture Handler. The manipulation leads to unrestricted upload. The attack may be...

9.8CVSS7.2AI score0.00738EPSS
Exploits1References3
Prion
Prionadded 2024/01/02 9:15 p.m.14 views

Out-of-bounds

A vulnerability, which was classified as critical, has been found in CodeAstro Internet Banking System up to 1.0. This issue affects some unknown processing of the file pagesaccount.php of the component Profile Picture Handler. The manipulation leads to unrestricted upload. The attack may be...

6.5CVSS7.2AI score0.00738EPSS
Exploits1References3Affected Software1
CVE
CVEadded 2024/01/02 8:31 p.m.68 views

CVE-2024-0194

CodeAstro Internet Banking System up to version 1.0 is affected by CVE-2024-0194 in the Profile Picture Handler component (pages_account.php). The vulnerability enables unrestricted file upload and may be exploited remotely. Multiple connected sources confirm the issue and the presence of an expl...

9.8CVSS9.4AI score0.00738EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichmentadded 2024/01/02 8:31 p.m.5 views

CVE-2024-0194 CodeAstro Internet Banking System Profile Picture pages_account.php unrestricted upload

A vulnerability, which was classified as critical, has been found in CodeAstro Internet Banking System up to 1.0. This issue affects some unknown processing of the file pagesaccount.php of the component Profile Picture Handler. The manipulation leads to unrestricted upload. The attack may be...

6.5CVSS9.6AI score0.00738EPSS
Exploits1References3
Cvelist
Cvelistadded 2024/01/02 8:31 p.m.28 views

CVE-2024-0194 CodeAstro Internet Banking System Profile Picture pages_account.php unrestricted upload

A vulnerability, which was classified as critical, has been found in CodeAstro Internet Banking System up to 1.0. This issue affects some unknown processing of the file pagesaccount.php of the component Profile Picture Handler. The manipulation leads to unrestricted upload. The attack may be...

6.5CVSS9.8AI score0.00738EPSS
Exploits1References3
CNNVD
CNNVDadded 2024/01/02 12:0 a.m.4 views

CodeAstro Internet Banking System Code Issue Vulnerability

CodeAstro Internet Banking System is a PHP online banking system from CodeAstro. A code issue exists in CodeAstro Internet Banking System version 1.0 and prior versions where a vulnerability exists due to unknown handling of the file pagesaccount.php in the component Profile Picture Handler,...

9.8CVSS7AI score0.00738EPSS
Exploits1References4
Positive Technologies
Positive Technologiesadded 2024/01/02 12:0 a.m.3 views

PT-2024-15377 · Unknown · Codeastro Internet Banking System

Name of the Vulnerable Software and Affected Versions: CodeAstro Internet Banking System versions up to 1.0 Description: A critical issue has been found in the CodeAstro Internet Banking System, affecting some unknown processing of the file pages account.php of the component Profile Picture...

9.8CVSS7AI score0.00738EPSS
Exploits1References9
OSV
OSVadded 2023/12/13 9:15 p.m.4 views

CVE-2023-6775

A vulnerability was found in CodeAstro POS and Inventory Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /item/itemcon. The manipulation of the argument itemname leads to cross site scripting. It is possible to initiate the attack remotely. T...

6.1CVSS3.8AI score0.00577EPSS
Exploits1References3
NVD
NVDadded 2023/12/13 9:15 p.m.24 views

CVE-2023-6775

A vulnerability was found in CodeAstro POS and Inventory Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /item/itemcon. The manipulation of the argument itemname leads to cross site scripting. It is possible to initiate the attack remotely. T...

6.1CVSS0.00577EPSS
Exploits1References3
Prion
Prionadded 2023/12/13 9:15 p.m.29 views

Cross site scripting

A vulnerability was found in CodeAstro POS and Inventory Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /item/itemcon. The manipulation of the argument itemname leads to cross site scripting. It is possible to initiate the attack remotely. T...

4CVSS6.4AI score0.00577EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2023/12/13 8:31 p.m.25 views

CVE-2023-6775 CodeAstro POS and Inventory Management System item_con cross site scripting

A vulnerability was found in CodeAstro POS and Inventory Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /item/itemcon. The manipulation of the argument itemname leads to cross site scripting. It is possible to initiate the attack remotely. T...

4CVSS6.2AI score0.00577EPSS
Exploits1References3
CVE
CVEadded 2023/12/13 8:31 p.m.33 views

CVE-2023-6775

CVE-2023-6775 affects CodeAstro POS and Inventory Management System 1.0. The vulnerability is a Cross-Site Scripting in the unknown part of the file /item/item_con caused by manipulation of the item_name argument. Attacks can be initiated remotely; exploits have been disclosed publicly. Several s...

6.1CVSS4.8AI score0.00577EPSS
Exploits1References3Affected Software1
OSV
OSVadded 2023/12/13 8:15 p.m.3 views

CVE-2023-6774

A vulnerability was found in CodeAstro POS and Inventory Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /accountscon/registeraccount. The manipulation of the argument Username with the input alertdocument.cookie leads to cross...

5.4CVSS3.6AI score0.00679EPSS
Exploits1References3
NVD
NVDadded 2023/12/13 8:15 p.m.24 views

CVE-2023-6774

A vulnerability was found in CodeAstro POS and Inventory Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /accountscon/registeraccount. The manipulation of the argument Username with the input alertdocument.cookie leads to cross...

5.4CVSS0.00679EPSS
Exploits1References3
Rows per page
Query Builder