1434 matches found
CVE-2025-3204
A vulnerability, which was classified as critical, has been found in CodeAstro Car Rental System 1.0. Affected by this issue is some unknown functionality of the file /returncar.php. The manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The exploit has...
CVE-2025-3204
A vulnerability, which was classified as critical, has been found in CodeAstro Car Rental System 1.0. Affected by this issue is some unknown functionality of the file /returncar.php. The manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The exploit has...
CVE-2025-3205
A vulnerability, which was classified as critical, was found in CodeAstro Student Grading System 1.0. This affects an unknown part of the file studentsubject.php. The manipulation of the argument studentId leads to sql injection. It is possible to initiate the attack remotely. The exploit has bee...
CVE-2025-3204
A vulnerability, which was classified as critical, has been found in CodeAstro Car Rental System 1.0. Affected by this issue is some unknown functionality of the file /returncar.php. The manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The exploit has...
CVE-2025-3205 CodeAstro Student Grading System studentsubject.php sql injection
A vulnerability, which was classified as critical, was found in CodeAstro Student Grading System 1.0. This affects an unknown part of the file studentsubject.php. The manipulation of the argument studentId leads to sql injection. It is possible to initiate the attack remotely. The exploit has bee...
CVE-2025-3205 CodeAstro Student Grading System studentsubject.php sql injection
A vulnerability, which was classified as critical, was found in CodeAstro Student Grading System 1.0. This affects an unknown part of the file studentsubject.php. The manipulation of the argument studentId leads to sql injection. It is possible to initiate the attack remotely. The exploit has bee...
CVE-2025-3205
CVE-2025-3205 affects CodeAstro Student Grading System 1.0. The vulnerability is in the studentsubject.php file, where manipulating the studentId parameter leads to SQL injection. Exploitation can be performed remotely via a network attack, and the exploit has been publicly disclosed. There is no...
CVE-2025-3204 CodeAstro Car Rental System returncar.php sql injection
A vulnerability, which was classified as critical, has been found in CodeAstro Car Rental System 1.0. Affected by this issue is some unknown functionality of the file /returncar.php. The manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The exploit has...
CVE-2025-3204
The CVE-2025-3204 entry concerns CodeAstro Car Rental System 1.0, where the /returncar.php file’s ID parameter can be manipulated to perform SQL injection. The vulnerability allows remote exploitation and is classified as critical, with multiple sources confirming the issue and its potential impa...
CVE-2025-3204 CodeAstro Car Rental System returncar.php sql injection
A vulnerability, which was classified as critical, has been found in CodeAstro Car Rental System 1.0. Affected by this issue is some unknown functionality of the file /returncar.php. The manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The exploit has...
CodeAstro Student Grading System 安全漏洞
CodeAstro Student Grading System is a student grading system from CodeAstro. A security vulnerability exists in CodeAstro Student Grading System version 1.0, which stems from an incorrect manipulation of the parameter studentId that can lead to SQL injection...
CodeAstro Car Rental System 安全漏洞
CodeAstro Car Rental System is a car rental system from CodeAstro. A security vulnerability exists in CodeAstro Car Rental System version 1.0, which stems from an incorrect manipulation of the parameter ID that can lead to SQL injection...
PT-2025-14832 · Unknown · Codeastro Student Grading System
Name of the Vulnerable Software and Affected Versions: CodeAstro Student Grading System version 1.0 Description: A critical issue was found in the CodeAstro Student Grading System, affecting an unknown part of the file studentsubject.php. The manipulation of the studentId argument leads to SQL...
PT-2025-14831 · Unknown · Codeastro Car Rental System
Name of the Vulnerable Software and Affected Versions: CodeAstro Car Rental System version 1.0 Description: A critical issue has been found in the CodeAstro Car Rental System, affecting some unknown functionality of the file /returncar.php. The manipulation of the ID argument leads to SQL...
PT-2025-7941 · Codeastro · Bus Ticket Booking System
Name of the Vulnerable Software and Affected Versions: Codeastro Bus Ticket Booking System version 1.0 Description: The issue concerns a SQL injection vulnerability via the kodetiket parameter in the "/BusTicket-CI/tiket/cekorder" API endpoint. This allows for potential exploitation. No informati...
CVE-2024-56889
Incorrect access control in the endpoint /admin/mdelete.php of CodeAstro Complaint Management System v1.0 allows unauthorized attackers to arbitrarily delete complaints via modification of the id parameter...
CVE-2024-56889
Incorrect access control in the endpoint /admin/mdelete.php of CodeAstro Complaint Management System v1.0 allows unauthorized attackers to arbitrarily delete complaints via modification of the id parameter...
CVE-2024-56889
Incorrect access control in the endpoint /admin/mdelete.php of CodeAstro Complaint Management System v1.0 allows unauthorized attackers to arbitrarily delete complaints via modification of the id parameter...
CodeAstro Complaint Management System 安全漏洞
CodeAstro Complaint Management System is a complaint management system from CodeAstro. A security vulnerability exists in CodeAstro Complaint Management System version v1.0, which originates from incorrect access control on the /admin/mdelete.php page...
CVE-2024-56889
CVE-2024-56889 affects CodeAstro Complaint Management System v1.0. The vulnerability is an Incorrect access control on the endpoint /admin/m_delete.php, allowing an unauthorized attacker to arbitrarily delete complaints by modifying the id parameter. The CVSS 3.1 base score is 7.5 (High) with Net...