39 matches found
CodeAstro Real Estate Management System SQL注入漏洞
CodeAstro Real Estate Management System is a real estate management system from CodeAstro. A SQL injection vulnerability exists in CodeAstro Real Estate Management System version 1.0, which stems from incorrect manipulation of the parameter ID in the file /admin/userdelete.php, which could lead t...
CVE-2025-14898 CodeAstro Real Estate Management System Administrator Endpoint userbuilderdelete.php sql injection
A security flaw has been discovered in CodeAstro Real Estate Management System 1.0. This affects an unknown function of the file /admin/userbuilderdelete.php of the component Administrator Endpoint. The manipulation results in sql injection. The attack can be launched remotely. The exploit has be...
EUVD-2024-16336
Malicious code in bioql PyPI...
EUVD-2025-16920
Malicious code in bioql PyPI...
EUVD-2025-16859
Malicious code in bioql PyPI...
CVE-2025-9942 CodeAstro Real Estate Management System submitproperty.php unrestricted upload
A vulnerability has been found in CodeAstro Real Estate Management System 1.0. Affected is an unknown function of the file /submitproperty.php. The manipulation leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used...
CVE-2025-5580
A vulnerability was found in CodeAstro Real Estate Management System 1.0. It has been classified as critical. This affects an unknown part of the file /login.php. The manipulation of the argument email leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...
CVE-2025-5582
A vulnerability was found in CodeAstro Real Estate Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /profile.php. The manipulation of the argument content leads to sql injection. The attack may be initiated remotely. The exploit has been...
CVE-2025-5610
A vulnerability, which was classified as critical, has been found in CodeAstro Real Estate Management System 1.0. Affected by this issue is some unknown functionality of the file /submitpropertydelete.php. The manipulation of the argument ID leads to sql injection. The attack may be launched...
CVE-2025-5611 CodeAstro Real Estate Management System submitpropertyupdate.php sql injection
A vulnerability, which was classified as critical, was found in CodeAstro Real Estate Management System 1.0. This affects an unknown part of the file /submitpropertyupdate.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit...
CVE-2025-5583 CodeAstro Real Estate Management System register.php sql injection
A vulnerability classified as critical has been found in CodeAstro Real Estate Management System 1.0. Affected is an unknown function of the file /register.php. The manipulation leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and...
CVE-2025-5583 CodeAstro Real Estate Management System register.php sql injection
A vulnerability classified as critical has been found in CodeAstro Real Estate Management System 1.0. Affected is an unknown function of the file /register.php. The manipulation leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and...
CVE-2025-5580
A vulnerability was found in CodeAstro Real Estate Management System 1.0. It has been classified as critical. This affects an unknown part of the file /login.php. The manipulation of the argument email leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...
CVE-2025-5582 CodeAstro Real Estate Management System profile.php sql injection
A vulnerability was found in CodeAstro Real Estate Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /profile.php. The manipulation of the argument content leads to sql injection. The attack may be initiated remotely. The exploit has been...
CVE-2025-5581 CodeAstro Real Estate Management System index.php sql injection
A vulnerability was found in CodeAstro Real Estate Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/index.php. The manipulation of the argument User leads to sql injection. The attack can be initiated remotely. The exploit has bee...
CVE-2025-5581 CodeAstro Real Estate Management System index.php sql injection
A vulnerability was found in CodeAstro Real Estate Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/index.php. The manipulation of the argument User leads to sql injection. The attack can be initiated remotely. The exploit has bee...
CVE-2025-5581
CVE-2025-5581 affects CodeAstro Real Estate Management System 1.0. The vulnerable component is the /admin/index.php file, where manipulation of the User parameter leads to an SQL injection. The vulnerability is exploitable remotely and the exploit has been disclosed publicly. Multiple sources cor...
CVE-2025-5580
CodeAstro Real Estate Management System 1.0 contains a SQL injection vulnerability in the login flow, caused by improper handling of the email parameter in /login.php. The issue is exploitable remotely and has been publicly disclosed. Multiple independent sources (NVD/NVD-derived entries, Red Hat...
PT-2025-23790 · Unknown · Codeastro Real Estate Management System
Name of the Vulnerable Software and Affected Versions: CodeAstro Real Estate Management System version 1.0 Description: A critical issue affects the processing of the file /profile.php. The manipulation of the content argument leads to SQL injection. The attack can be initiated remotely. An explo...
PT-2025-23861 · Unknown · Codeastro Real Estate Management System
Name of the Vulnerable Software and Affected Versions: CodeAstro Real Estate Management System version 1.0 Description: A critical issue was found in the system, affecting an unknown part of the file /submitpropertyupdate.php. The manipulation of the ID argument leads to SQL injection. It is...