Lucene search
+L

333 matches found

CNNVD
CNNVD
added 2025/04/09 12:0 a.m.4 views

CodeAstro Internet Banking System 安全漏洞

CodeAstro Internet Banking System is a PHP online banking system from CodeAstro. A security vulnerability exists in CodeAstro Internet Banking System version 2.0.0, which is caused by stored cross-site scripting in the name parameter...

4.8CVSS6AI score0.00256EPSS
Exploits1References1
CVE
CVE
added 2025/04/09 12:0 a.m.75 views

CVE-2025-29018

CVE-2025-29018 affects Code Astro Internet Banking System 2.0.0. The vulnerability is a Stored Cross-Site Scripting (XSS) in the name parameter of pages_add_acc_type.php. Core details: vulnerable component is the PHP page handler and the issue arises from unsanitized/reflective input in the name ...

4.8CVSS5.9AI score0.00256EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2025/04/09 12:0 a.m.20 views

CVE-2025-29018

A Stored Cross-Site Scripting XSS vulnerability exists in the name parameter of pagesaddacctype.php in Code Astro Internet Banking System 2.0.0...

0.00256EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/04/09 12:0 a.m.10 views

CVE-2025-29018

A Stored Cross-Site Scripting XSS vulnerability exists in the name parameter of pagesaddacctype.php in Code Astro Internet Banking System 2.0.0...

5AI score0.00256EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/01/22 12:0 a.m.6 views

CodeAstro Internet Banking System 跨站请求伪造漏洞

CodeAstro Internet Banking System is a PHP online banking system from CodeAstro. A security vulnerability exists in CodeAstro Internet Banking System version 2.0.0. An attacker can exploit this vulnerability by executing arbitrary JavaScript on the administration page pagesaccount to change accou...

7.3CVSS6.6AI score0.00438EPSS
Exploits2References2
Schneier on Security
Schneier on Security
added 2024/07/18 3:33 p.m.7 views

Criminal Gang Physically Assaulting People for Their Cryptocurrency

This is pretty horrific: …a group of men behind a violent crime spree designed to compel victims to hand over access to their cryptocurrency savings. That announcement and the criminal complaint laying out charges against St. Felix focused largely on a single theft of cryptocurrency from an elder...

7.2AI score
Exploits0
0day.today
0day.today
added 2024/07/09 12:0 a.m.240 views

Simple Online Banking System 1.0 SQL Injection Vulnerability

Exploit Title: Simple Online Banking System - SQLi Authentication Bypass Exploit Author: bRpsd Vendor Homepage: https://www.sourcecodester.com/php/14868/banking-system-using-php-free-source-code.html Software Link:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/07/08 12:0 a.m.246 views

Simple Online Banking System 1.0 SQL Injection

Exploit Title: Simple Online Banking System - SQLi Authentication Bypass Date: 6 Jul, 2024 CVE: N/A Exploit Author: bRpsd Vendor Homepage: https://www.sourcecodester.com/php/14868/banking-system-using-php-free-source-code.html Software Link:...

7.4AI score
Exploits0
OSV
OSV
added 2024/06/20 4:15 p.m.4 views

CVE-2024-6196

A vulnerability was found in itsourcecode Banking Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file adminclass.php. The manipulation of the argument username leads to sql injection. The attack may be launched remotely. The exploit h...

9.8CVSS6.8AI score0.00561EPSS
Exploits1References4
Prion
Prion
added 2024/01/22 4:15 p.m.17 views

Open redirect

A vulnerability, which was classified as problematic, was found in CodeAstro Internet Banking System 1.0. This affects an unknown part of the file pagesclientsignup.php. The manipulation of the argument Client Full Name with the input leads to open redirect. It is possible to initiate the attack...

4CVSS7.1AI score0.00514EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2024/01/22 4:0 p.m.44 views

CVE-2024-0781

CVE-2024-0781 affects CodeAstro Internet Banking System 1.0, specifically an vulnerability in the pages_client_signup.php file where manipulating the Client Full Name parameter can trigger an open redirect. The issue is exploitable remotely and has been publicly disclosed (VDB-251697). Several co...

6.1CVSS6.3AI score0.00514EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2024/01/22 4:0 p.m.24 views

CVE-2024-0781 CodeAstro Internet Banking System pages_client_signup.php redirect

A vulnerability, which was classified as problematic, was found in CodeAstro Internet Banking System 1.0. This affects an unknown part of the file pagesclientsignup.php. The manipulation of the argument Client Full Name with the input leads to open redirect. It is possible to initiate the attack...

4CVSS6.5AI score0.00514EPSS
Exploits1References3
OSV
OSV
added 2024/01/22 12:15 a.m.6 views

CVE-2024-0773

A vulnerability classified as problematic was found in CodeAstro Internet Banking System 1.0. Affected by this vulnerability is an unknown functionality of the file pagesclientsignup.php. The manipulation of the argument Client Full Name leads to cross site scripting. The attack can be launched...

5.4CVSS3.8AI score0.00562EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2024/01/22 12:0 a.m.6 views

PT-2024-15814 · Unknown · Codeastro Internet Banking System

Name of the Vulnerable Software and Affected Versions: CodeAstro Internet Banking System version 1.0 Description: A problematic issue was found in the CodeAstro Internet Banking System, affecting an unknown part of the file pages client signup.php. The manipulation of the argument Client Full Nam...

6.1CVSS6.8AI score0.00514EPSS
Exploits1References6
CVE
CVE
added 2024/01/21 11:31 p.m.36 views

CVE-2024-0773

CVE-2024-0773 affects CodeAstro Internet Banking System 1.0. The vulnerability is an XSS in the pages_client_signup.php file, caused by the manipulation of the Client Full Name parameter. It is exploitable remotely and, per the sources, the exploit has been disclosed publicly. Connected documents...

5.4CVSS5.2AI score0.00562EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2024/01/21 11:31 p.m.29 views

CVE-2024-0773 CodeAstro Internet Banking System pages_client_signup.php cross site scripting

A vulnerability classified as problematic was found in CodeAstro Internet Banking System 1.0. Affected by this vulnerability is an unknown functionality of the file pagesclientsignup.php. The manipulation of the argument Client Full Name leads to cross site scripting. The attack can be launched...

4CVSS5.5AI score0.00562EPSS
Exploits1References3
NVD
NVD
added 2024/01/11 8:15 p.m.25 views

CVE-2024-0424

A vulnerability classified as problematic has been found in CodeAstro Simple Banking System 1.0. This affects an unknown part of the file createuser.php of the component Create a User Page. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit...

5.4CVSS4.2AI score0.00497EPSS
Exploits1References3
Prion
Prion
added 2024/01/11 8:15 p.m.20 views

Cross site scripting

A vulnerability classified as problematic has been found in CodeAstro Simple Banking System 1.0. This affects an unknown part of the file createuser.php of the component Create a User Page. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit...

4CVSS6.4AI score0.00497EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2024/01/11 7:31 p.m.5 views

CVE-2024-0424 CodeAstro Simple Banking System Create a User Page createuser.php cross site scripting

A vulnerability classified as problematic has been found in CodeAstro Simple Banking System 1.0. This affects an unknown part of the file createuser.php of the component Create a User Page. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit...

4CVSS4.2AI score0.00497EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/01/11 7:31 p.m.37 views

CVE-2024-0424 CodeAstro Simple Banking System Create a User Page createuser.php cross site scripting

A vulnerability classified as problematic has been found in CodeAstro Simple Banking System 1.0. This affects an unknown part of the file createuser.php of the component Create a User Page. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit...

4CVSS5.5AI score0.00497EPSS
Exploits1References3
Rows per page
Query Builder