Lucene search
K

84 matches found

ptsecurity
ptsecurity
added 2025/11/03 12:0 a.m.6 views

PT-2025-44744

Name of the Vulnerable Software and Affected Versions CodeAstro Gym Management System version 1.0 Description A flaw exists in CodeAstro Gym Management System 1.0 that could allow for SQL injection. This issue affects the /admin/view-progress-report.php file. Manipulation of the ID argument can...

7.2CVSS7.5AI score0.00361EPSS
Exploits1References8
ptsecurity
ptsecurity
added 2025/11/03 12:0 a.m.5 views

PT-2025-44743

Name of the Vulnerable Software and Affected Versions CodeAstro Gym Management System version 1.0 Description A flaw exists in CodeAstro Gym Management System version 1.0 where manipulation of the id/ini weight argument in the file '/admin/update-progress.php' can lead to SQL injection. This issu...

8.8CVSS6.7AI score0.00332EPSS
Exploits1References9
redhatcve
redhatcve
added 2025/10/28 10:52 a.m.5 views

CVE-2025-12261

A vulnerability was found in CodeAstro Gym Management System 1.0. This affects an unknown function of the file /admin/actions/remove-announcement.php. Performing a manipulation of the argument ID results in sql injection. The attack can be initiated remotely. The exploit has been made public and...

8.8CVSS6.4AI score0.00425EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/10/28 7:59 a.m.5 views

CVE-2025-12242

A vulnerability has been found in CodeAstro Gym Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/actions/check-attendance.php. Such manipulation of the argument ID leads to sql injection. The attack can be launched remotely. The exploit has been...

8.8CVSS6.5AI score0.00301EPSS
Exploits1References1
nvd
nvd
added 2025/10/27 10:15 a.m.3 views

CVE-2025-12261

A vulnerability was found in CodeAstro Gym Management System 1.0. This affects an unknown function of the file /admin/actions/remove-announcement.php. Performing a manipulation of the argument ID results in sql injection. The attack can be initiated remotely. The exploit has been made public and...

8.8CVSS0.00425EPSS
Exploits1References5
osv
osv
added 2025/10/27 10:15 a.m.4 views

CVE-2025-12261

A vulnerability was found in CodeAstro Gym Management System 1.0. This affects an unknown function of the file /admin/actions/remove-announcement.php. Performing a manipulation of the argument ID results in sql injection. The attack can be initiated remotely. The exploit has been made public and...

8.8CVSS6.5AI score0.00425EPSS
Exploits1References5
euvd
euvd
added 2025/10/27 10:2 a.m.5 views

EUVD-2025-36153

A vulnerability was found in CodeAstro Gym Management System 1.0. This affects an unknown function of the file /admin/actions/remove-announcement.php. Performing manipulation of the argument ID results in sql injection. The attack can be initiated remotely. The exploit has been made public and...

6.5CVSS6.5AI score0.00425EPSS
Exploits1References6
vulnrichment
vulnrichment
added 2025/10/27 10:2 a.m.3 views

CVE-2025-12261 CodeAstro Gym Management System remove-announcement.php sql injection

A vulnerability was found in CodeAstro Gym Management System 1.0. This affects an unknown function of the file /admin/actions/remove-announcement.php. Performing a manipulation of the argument ID results in sql injection. The attack can be initiated remotely. The exploit has been made public and...

6.5CVSS6.4AI score0.00425EPSS
Exploits1References5
cvelist
cvelist
added 2025/10/27 10:2 a.m.12 views

CVE-2025-12261 CodeAstro Gym Management System remove-announcement.php sql injection

A vulnerability was found in CodeAstro Gym Management System 1.0. This affects an unknown function of the file /admin/actions/remove-announcement.php. Performing a manipulation of the argument ID results in sql injection. The attack can be initiated remotely. The exploit has been made public and...

6.5CVSS0.00425EPSS
Exploits1References5
cve
cve
added 2025/10/27 10:2 a.m.16 views

CVE-2025-12261

CodeAstro Gym Management System 1.0 is affected by a SQL injection in /admin/actions/remove-announcement.php caused by manipulation of the ID parameter. The vulnerability can be exploited remotely and the exploit has been made public. Affected product/component: CodeAstro Gym Management System 1....

8.8CVSS6.4AI score0.00425EPSS
Exploits1References5Affected Software1
osv
osv
added 2025/10/27 7:15 a.m.4 views

CVE-2025-12242

A vulnerability has been found in CodeAstro Gym Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/actions/check-attendance.php. Such manipulation of the argument ID leads to sql injection. The attack can be launched remotely. The exploit has been...

8.8CVSS5.8AI score0.00301EPSS
Exploits1References5
nvd
nvd
added 2025/10/27 7:15 a.m.6 views

CVE-2025-12242

A vulnerability has been found in CodeAstro Gym Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/actions/check-attendance.php. Such manipulation of the argument ID leads to sql injection. The attack can be launched remotely. The exploit has been...

8.8CVSS0.00301EPSS
Exploits1References5
vulnrichment
vulnrichment
added 2025/10/27 7:2 a.m.6 views

CVE-2025-12242 CodeAstro Gym Management System check-attendance.php sql injection

A vulnerability has been found in CodeAstro Gym Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/actions/check-attendance.php. Such manipulation of the argument ID leads to sql injection. The attack can be launched remotely. The exploit has been...

6.5CVSS6.4AI score0.00301EPSS
Exploits1References5
euvd
euvd
added 2025/10/27 7:2 a.m.6 views

EUVD-2025-36126

A vulnerability has been found in CodeAstro Gym Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/actions/check-attendance.php. Such manipulation of the argument ID leads to sql injection. The attack can be launched remotely. The exploit has been...

6.5CVSS6.3AI score0.00301EPSS
Exploits1References6
cve
cve
added 2025/10/27 7:2 a.m.16 views

CVE-2025-12242

CVE-2025-12242 affects CodeAstro Gym Management System 1.0. The vulnerability is in an unknown function of the file /admin/actions/check-attendance.php , where manipulating the ID parameter leads to a SQL injection . It can be exploited remotely, and the exploit has been disclosed. The connected ...

8.8CVSS6.5AI score0.00301EPSS
Exploits1References5Affected Software1
ptsecurity
ptsecurity
added 2025/10/27 12:0 a.m.7 views

PT-2025-43898

Name of the Vulnerable Software and Affected Versions CodeAstro Gym Management System version 1.0 Description A SQL injection issue exists in CodeAstro Gym Management System 1.0. The issue is located in an unknown functionality of the file /admin/actions/check-attendance.php. Manipulation of the ...

8.8CVSS7.1AI score0.00301EPSS
Exploits1References8
cnnvd
cnnvd
added 2025/10/27 12:0 a.m.8 views

CodeAstro Gym Management System SQL注入漏洞

CodeAstro Gym Management System is a gym management system from CodeAstro. A SQL injection vulnerability exists in CodeAstro Gym Management System version 1.0, which stems from incorrect manipulation of the parameter ID in the file /admin/actions/check-attendance.php, which could lead to a SQL...

8.8CVSS6.9AI score0.00301EPSS
Exploits1References5
ptsecurity
ptsecurity
added 2025/10/27 12:0 a.m.5 views

PT-2025-43922

Name of the Vulnerable Software and Affected Versions CodeAstro Gym Management System version 1.0 Description A flaw exists in CodeAstro Gym Management System version 1.0 that allows for SQL injection. This occurs through manipulation of the ID argument in the file...

8.8CVSS7.3AI score0.00425EPSS
Exploits1References7
redhatcve
redhatcve
added 2025/10/12 7:19 a.m.5 views

CVE-2025-11593

A flaw has been found in CodeAstro Gym Management System 1.0. This vulnerability affects unknown code of the file /admin/actions/delete-equipment.php. This manipulation of the argument ID causes sql injection. The attack may be initiated remotely. The exploit has been published and may be used...

8.8CVSS7AI score0.00311EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/10/12 7:19 a.m.6 views

CVE-2025-11592

A vulnerability was detected in CodeAstro Gym Management System 1.0. This affects an unknown part of the file /admin/edit-equipmentform.php. The manipulation of the argument ID results in sql injection. The attack can be launched remotely. The exploit is now public and may be used...

8.8CVSS7AI score0.00354EPSS
Exploits1References1
Rows per page
Query Builder