7 matches found
EUVD-2025-204435
A security vulnerability has been detected in CodeAstro Real Estate Management System 1.0. Affected is an unknown function of the file /admin/userdelete.php of the component Administrator Endpoint. Such manipulation of the argument ID leads to sql injection. The attack may be launched remotely. T...
CVE-2025-14900
A security vulnerability has been detected in CodeAstro Real Estate Management System 1.0. Affected is an unknown function of the file /admin/userdelete.php of the component Administrator Endpoint. Such manipulation of the argument ID leads to sql injection. The attack may be launched remotely. T...
CVE-2025-14900 CodeAstro Real Estate Management System Administrator Endpoint userdelete.php sql injection
A security vulnerability has been detected in CodeAstro Real Estate Management System 1.0. Affected is an unknown function of the file /admin/userdelete.php of the component Administrator Endpoint. Such manipulation of the argument ID leads to sql injection. The attack may be launched remotely. T...
CVE-2025-14900
CodeAstro Real Estate Management System 1.0 is affected. The vulnerability is an SQL injection in the Administrator Endpoint, caused by manipulation of the ID parameter in /admin/userdelete.php. Exploitation can be remote and a public exploit exists. The root cause is improper handling of the ID ...
PT-2025-52397
A security vulnerability has been detected in CodeAstro Real Estate Management System 1.0. Affected is an unknown function of the file /admin/userdelete.php of the component Administrator Endpoint. Such manipulation of the argument ID leads to sql injection. The attack may be launched remotely. T...
CodeAstro Real Estate Management System SQL注入漏洞
CodeAstro Real Estate Management System is a real estate management system from CodeAstro. A SQL injection vulnerability exists in CodeAstro Real Estate Management System version 1.0, which stems from incorrect manipulation of the parameter ID in the file /admin/userdelete.php, which could lead t...
CVE-2020-8425
Cups Easy Purchase & Inventory 1.0 is vulnerable to CSRF that leads to admin account deletion via userdelete.php...