CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1434 matches found

OSV•added 2025/05/16 9:15 p.m.•3 views

CVE-2025-4811

A vulnerability was found in CodeAstro Pharmacy Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /index.php of the component Login. The manipulation of the argument Username leads to sql injection. The attack may be launched...

9.8CVSS5.8AI score0.00421EPSS

Exploits1References5

NVD•added 2025/05/16 9:15 p.m.•11 views

CVE-2025-4811

9.8CVSS0.00421EPSS

Exploits1References5

Vulnrichment•added 2025/05/16 9:0 p.m.•9 views

CVE-2025-4811 CodeAstro Pharmacy Management System Login index.php sql injection

7.5CVSS7.3AI score0.00421EPSS

Exploits1References5

Cvelist•added 2025/05/16 9:0 p.m.•17 views

CVE-2025-4811 CodeAstro Pharmacy Management System Login index.php sql injection

7.5CVSS0.00421EPSS

Exploits1References5

CVE•added 2025/05/16 9:0 p.m.•33 views

CVE-2025-4811

The CVE-2025-4811 entry applies to CodeAstro Pharmacy Management System 1.0, specifically the Login component’s /index.php. The vulnerability arises from improper manipulation of the Username parameter, resulting in a SQL injection that can be exploited remotely over the network. Public disclosur...

9.8CVSS7.4AI score0.00421EPSS

Exploits1References5Affected Software1

Positive Technologies•added 2025/05/16 12:0 a.m.•5 views

PT-2025-21762 · Unknown · Codeastro Pharmacy Management System

Name of the Vulnerable Software and Affected Versions: CodeAstro Pharmacy Management System version 1.0 Description: A critical issue was found in the CodeAstro Pharmacy Management System, affecting some unknown functionality of the file "/index.php" in the Login component. The manipulation of th...

9.8CVSS7.3AI score0.00421EPSS

Exploits1References8

RedhatCVE•added 2025/04/30 3:17 a.m.•21 views

CVE-2025-3998

A vulnerability classified as critical was found in CodeAstro Membership Management System 1.0. This vulnerability affects unknown code of the file renew.php?id=6. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to t...

9.8CVSS7.6AI score0.00415EPSS

Exploits1References1

RedhatCVE•added 2025/04/30 12:14 a.m.•17 views

CVE-2025-25776

Cross-Site Scripting XSS vulnerability exists in the User Registration and User Profile features of Codeastro Bus Ticket Booking System v1.0 allows an attacker to execute arbitrary code into the Full Name and Address fields during user registration or profile editing...

5CVSS6.2AI score0.00216EPSS

Exploits1References1

OSV•added 2025/04/28 3:15 p.m.•5 views

CVE-2025-25776

5CVSS6.1AI score0.00216EPSS

Exploits1References2

NVD•added 2025/04/28 3:15 p.m.•19 views

CVE-2025-25776

5CVSS0.00216EPSS

Exploits1References2

OSV•added 2025/04/28 4:15 a.m.•2 views

CVE-2025-3998

9.8CVSS5.8AI score0.00415EPSS

Exploits1References5

NVD•added 2025/04/28 4:15 a.m.•13 views

CVE-2025-3998

9.8CVSS0.00415EPSS

Exploits1References5

Vulnrichment•added 2025/04/28 3:0 a.m.•9 views

CVE-2025-3998 CodeAstro Membership Management System renew.php sql injection

7.5CVSS7.6AI score0.00415EPSS

Exploits1References5

CVE•added 2025/04/28 3:0 a.m.•60 views

CVE-2025-3998

CVE-2025-3998 affects CodeAstro Membership Management System 1.0. The vulnerability is an SQL injection in the renew.php?id=6 endpoint caused by improper handling of the ID parameter, exploitable remotely. Public disclosures exist across multiple feeds. There is no documented patched version in t...

9.8CVSS7.6AI score0.00415EPSS

Exploits1References5Affected Software1

Cvelist•added 2025/04/28 3:0 a.m.•18 views

CVE-2025-3998 CodeAstro Membership Management System renew.php sql injection

7.5CVSS0.00415EPSS

Exploits1References5

Vulnrichment•added 2025/04/28 12:0 a.m.•6 views

CVE-2025-25776

5AI score0.00216EPSS

Exploits1References2

CNNVD•added 2025/04/28 12:0 a.m.•2 views

CodeAstro Bus Ticket Booking System 安全漏洞

CodeAstro Bus Ticket Booking System is a bus ticket booking system from CodeAstro. A security vulnerability exists in CodeAstro Bus Ticket Booking System v1.0, which stems from insufficient input validation of the Full Name and Address fields in the user registration and user profile functionalit...

5CVSS5.9AI score0.00216EPSS

Exploits1References3

CNNVD•added 2025/04/28 12:0 a.m.•3 views

CodeAstro Membership Management System 注入漏洞

CodeAstro Membership Management System is a membership management system from CodeAstro. An injection vulnerability exists in CodeAstro Membership Management System version 1.0, which is caused by SQL injection due to the operation of the parameter ID in the file renew.php?id=6...

9.8CVSS7.8AI score0.00415EPSS

Exploits1References5

Cvelist•added 2025/04/28 12:0 a.m.•15 views

CVE-2025-25776

0.00216EPSS

Exploits1References2

Positive Technologies•added 2025/04/28 12:0 a.m.•5 views

PT-2025-18071 · Unknown · Codeastro Bus Ticket Booking System

Name of the Vulnerable Software and Affected Versions: Codeastro Bus Ticket Booking System version 1.0 Description: A Cross-Site Scripting XSS issue exists in the User Registration and User Profile features, allowing an attacker to execute arbitrary code in the Full Name and Address fields during...

5CVSS5.8AI score0.00216EPSS

Exploits1References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by