CVE-2025-9237

CodeAstro Ecommerce Website 1.0 is affected by a cross-site scripting (XSS) issue in the Edit Your Account Page, specifically via manipulation of the Username parameter in /customer/my_account.php?edit_account. The vulnerability originates from an unknown function in that page; exploitation can b...

CVE-2025-9237 CodeAstro Ecommerce Website Edit Your Account my_account.php cross site scripting

A vulnerability was found in CodeAstro Ecommerce Website 1.0. This impacts an unknown function of the file /customer/myaccount.php?editaccount of the component Edit Your Account Page. Performing manipulation of the argument Username results in cross site scripting. It is possible to initiate the...

CVE-2025-9237 CodeAstro Ecommerce Website Edit Your Account my_account.php cross site scripting

A vulnerability was found in CodeAstro Ecommerce Website 1.0. This impacts an unknown function of the file /customer/myaccount.php?editaccount of the component Edit Your Account Page. Performing manipulation of the argument Username results in cross site scripting. It is possible to initiate the...

CodeAstro Ecommerce Website 安全漏洞

CodeAstro Ecommerce Website is an e-commerce website from CodeAstro, Inc. A security vulnerability exists in CodeAstro Ecommerce Website version 1.0, which originates from a cross-site scripting attack due to an incorrect manipulation of the parameter Username in the file /customer/myaccount.php...

PT-2025-34140 · Codeastro · Codeastro Ecommerce Site

Name of the Vulnerable Software and Affected Versions: CodeAstro Ecommerce Website version 1.0 Description: A vulnerability exists in CodeAstro Ecommerce Website 1.0 that allows for cross-site scripting. The issue is located in an unknown function of the /customer/my account.php?edit account file...

CVE-2025-7153

A vulnerability classified as problematic was found in CodeAstro Simple Hospital Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /doctor.html of the component POST Parameter Handler. The manipulation of the argument First Name/Last name/Address leads ...

CVE-2025-7148

A vulnerability was found in CodeAstro Simple Hospital Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /patient.html of the component POST Parameter Handler. The manipulation leads to cross site scripting. The attack may be...

CVE-2025-7147

A vulnerability has been found in CodeAstro Patient Record Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /login.php. The manipulation of the argument uname leads to sql injection. The attack can be launched remotely. The...

CVE-2025-7133

A vulnerability classified as problematic has been found in CodeAstro Online Movie Ticket Booking System 1.0. This affects an unknown part. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be...

CVE-2025-7153

A vulnerability classified as problematic was found in CodeAstro Simple Hospital Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /doctor.html of the component POST Parameter Handler. The manipulation of the argument First Name/Last name/Address leads ...

CVE-2025-7153

A vulnerability classified as problematic was found in CodeAstro Simple Hospital Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /doctor.html of the component POST Parameter Handler. The manipulation of the argument First Name/Last name/Address leads ...

CVE-2025-7153

CodeAstro Simple Hospital Management System 1.0 is affected by a remote cross-site scripting (XSS) vulnerability in the POST Parameter Handler, triggered by manipulating the First Name, Last Name, or Address arguments in /doctor.html. The issue is exploitable remotely and has been disclosed publi...

CVE-2025-7153 CodeAstro Simple Hospital Management System POST Parameter doctor.html cross site scripting

A vulnerability classified as problematic was found in CodeAstro Simple Hospital Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /doctor.html of the component POST Parameter Handler. The manipulation of the argument First Name/Last name/Address leads ...

CVE-2025-7153 CodeAstro Simple Hospital Management System POST Parameter doctor.html cross site scripting

A vulnerability classified as problematic was found in CodeAstro Simple Hospital Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /doctor.html of the component POST Parameter Handler. The manipulation of the argument First Name/Last name/Address leads ...

PT-2025-28273 · Codeastro · Codeastro Hospital Management System

Name of the Vulnerable Software and Affected Versions: CodeAstro Simple Hospital Management System version 1.0 Description: A problematic issue was found in the CodeAstro Simple Hospital Management System, affecting an unknown functionality of the file /doctor.html, specifically the POST Paramete...

CVE-2025-7148

A vulnerability was found in CodeAstro Simple Hospital Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /patient.html of the component POST Parameter Handler. The manipulation leads to cross site scripting. The attack may be...

CVE-2025-7148

A vulnerability was found in CodeAstro Simple Hospital Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /patient.html of the component POST Parameter Handler. The manipulation leads to cross site scripting. The attack may be...

CVE-2025-7148 CodeAstro Simple Hospital Management System POST Parameter patient.html cross site scripting

A vulnerability was found in CodeAstro Simple Hospital Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /patient.html of the component POST Parameter Handler. The manipulation leads to cross site scripting. The attack may be...

CVE-2025-7148 CodeAstro Simple Hospital Management System POST Parameter patient.html cross site scripting

A vulnerability was found in CodeAstro Simple Hospital Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /patient.html of the component POST Parameter Handler. The manipulation leads to cross site scripting. The attack may be...

CVE-2025-7148

CVE-2025-7148 concerns CodeAstro Simple Hospital Management System 1.0. The issue affects an unknown function within the file /patient.html of the POST Parameter Handler, where input manipulation leads to cross-site scripting. The vulnerability can be exploited remotely and multiple parameters ma...