8 matches found
CVE-2026-36387
A Remote Code Execution vulnerability was found in CODEASTRO Membership Management System v1.0 in /addmembers.php. This vulnerability affects the file upload functionality, where improper file sanitization allows attackers to inject malicious files which leads RCE...
CVE-2026-36387
A Remote Code Execution vulnerability was found in CODEASTRO Membership Management System v1.0 in /addmembers.php. This vulnerability affects the file upload functionality, where improper file sanitization allows attackers to inject malicious files which leads RCE...
CodeAstro Membership Management System 代码问题漏洞
The CodeAstro Membership Management System is a member management system developed by CodeAstro Inc. Version 1.0 of the CODEASTRO Membership Management System has code-related vulnerabilities. These vulnerabilities stem from the file upload functionality in the /addmembers.php file. Improper...
CVE-2025-7930
CVE-2025-7930 affects the open-source project “Church Donation System” v1.0. The vulnerability is an SQL injection in the file /members/add_members.php, caused by manipulating the mobile parameter. It can be exploited remotely over the network with no user interaction; multiple sources note explo...
CVE-2024-46236
CodeAstro Membership Management System v1.0 is vulnerable to Cross Site Scripting XSS via the address parameter in addmembers.php and editmember.php...
CVE-2024-45528
CodeAstro MembershipM-PHP aka Membership Management System in PHP 1.0 allows addmembers.php fullname stored XSS...
CVE-2024-45528
CVE-2024-45528 affects CodeAstro MembershipM-PHP (Membership Management System in PHP) version 1.0. The vulnerability is a stored cross-site scripting (XSS) flaw triggered by the fullname field in add_members.php, enabling an attacker to inject script that could be reflected during user interacti...
CVE-2024-45528
CodeAstro MembershipM-PHP aka Membership Management System in PHP 1.0 allows addmembers.php fullname stored XSS...