CVE-2025-9941 CodeAstro Real Estate Management System register.php unrestricted upload

A flaw has been found in CodeAstro Real Estate Management System 1.0. This impacts an unknown function of the file /register.php. Executing manipulation of the argument uimage can lead to unrestricted upload. The attack can be launched remotely. The exploit has been published and may be used...

CVE-2025-9940 CodeAstro Real Estate Management System feature.php cross site scripting

A vulnerability was detected in CodeAstro Real Estate Management System 1.0. This affects an unknown function of the file /feature.php. Performing manipulation of the argument msg results in cross site scripting. The attack can be initiated remotely. The exploit is now public and may be used...

CVE-2025-9939 CodeAstro Real Estate Management System propertyview.php cross site scripting

A security vulnerability has been detected in CodeAstro Real Estate Management System 1.0. The impacted element is an unknown function of the file /propertyview.php. Such manipulation of the argument msg leads to cross site scripting. It is possible to launch the attack remotely. The exploit has...

PT-2025-35864

Name of the Vulnerable Software and Affected Versions: CodeAstro Real Estate Management System version 1.0 Description: A vulnerability exists in CodeAstro Real Estate Management System 1.0 that allows for unrestricted file upload through the /submitproperty.php file. The attack can be initiated...

CodeAstro Real Estate Management System 代码注入漏洞

CodeAstro Real Estate Management System is a real estate management system from CodeAstro. A code injection vulnerability exists in CodeAstro Real Estate Management System version 1.0, which stems from improper manipulation of the parameter msg in the file /propertyview.php, which could lead to a...

CodeAstro Real Estate Management System 代码问题漏洞

CodeAstro Real Estate Management System is a real estate management system from CodeAstro. A code issue vulnerability exists in CodeAstro Real Estate Management System version 1.0, which stems from improper manipulation of file/submitproperty.php, which could lead to arbitrary file uploads...

CodeAstro Real Estate Management System 代码问题漏洞

CodeAstro Real Estate Management System is a real estate management system from CodeAstro. A code issue vulnerability exists in CodeAstro Real Estate Management System version 1.0, which stems from improper manipulation of the parameter uimage in the file /register.php, which could lead to...

CVE-2025-9237

A vulnerability was found in CodeAstro Ecommerce Website 1.0. This impacts an unknown function of the file /customer/myaccount.php?editaccount of the component Edit Your Account Page. Performing manipulation of the argument Username results in cross site scripting. It is possible to initiate the...

CVE-2025-9237

A vulnerability was found in CodeAstro Ecommerce Website 1.0. This impacts an unknown function of the file /customer/myaccount.php?editaccount of the component Edit Your Account Page. Performing manipulation of the argument Username results in cross site scripting. It is possible to initiate the...

CVE-2025-9237

CodeAstro Ecommerce Website 1.0 is affected by a cross-site scripting (XSS) issue in the Edit Your Account Page, specifically via manipulation of the Username parameter in /customer/my_account.php?edit_account. The vulnerability originates from an unknown function in that page; exploitation can b...

CVE-2025-9237 CodeAstro Ecommerce Website Edit Your Account my_account.php cross site scripting

A vulnerability was found in CodeAstro Ecommerce Website 1.0. This impacts an unknown function of the file /customer/myaccount.php?editaccount of the component Edit Your Account Page. Performing manipulation of the argument Username results in cross site scripting. It is possible to initiate the...

CVE-2025-9237 CodeAstro Ecommerce Website Edit Your Account my_account.php cross site scripting

A vulnerability was found in CodeAstro Ecommerce Website 1.0. This impacts an unknown function of the file /customer/myaccount.php?editaccount of the component Edit Your Account Page. Performing manipulation of the argument Username results in cross site scripting. It is possible to initiate the...

PT-2025-34140 · Codeastro · Codeastro Ecommerce Site

Name of the Vulnerable Software and Affected Versions: CodeAstro Ecommerce Website version 1.0 Description: A vulnerability exists in CodeAstro Ecommerce Website 1.0 that allows for cross-site scripting. The issue is located in an unknown function of the /customer/my account.php?edit account file...

CodeAstro Ecommerce Website 安全漏洞

CodeAstro Ecommerce Website is an e-commerce website from CodeAstro, Inc. A security vulnerability exists in CodeAstro Ecommerce Website version 1.0, which originates from a cross-site scripting attack due to an incorrect manipulation of the parameter Username in the file /customer/myaccount.php...

CVE-2025-7153

A vulnerability classified as problematic was found in CodeAstro Simple Hospital Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /doctor.html of the component POST Parameter Handler. The manipulation of the argument First Name/Last name/Address leads ...

CVE-2025-7148

A vulnerability was found in CodeAstro Simple Hospital Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /patient.html of the component POST Parameter Handler. The manipulation leads to cross site scripting. The attack may be...

CVE-2025-7147

A vulnerability has been found in CodeAstro Patient Record Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /login.php. The manipulation of the argument uname leads to sql injection. The attack can be launched remotely. The...

CVE-2025-7133

A vulnerability classified as problematic has been found in CodeAstro Online Movie Ticket Booking System 1.0. This affects an unknown part. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be...

CVE-2025-7153

A vulnerability classified as problematic was found in CodeAstro Simple Hospital Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /doctor.html of the component POST Parameter Handler. The manipulation of the argument First Name/Last name/Address leads ...

CVE-2025-7153

A vulnerability classified as problematic was found in CodeAstro Simple Hospital Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /doctor.html of the component POST Parameter Handler. The manipulation of the argument First Name/Last name/Address leads ...