1283 matches found
PT-2025-17857 · Unknown · Codeastro Bus Ticket Booking System
Name of the Vulnerable Software and Affected Versions: Codeastro Bus Ticket Booking System version 1.0 Description: Insecure Direct Object Reference IDOR in Codeastro Bus Ticket Booking System allows unauthorized access to user profiles. By manipulating the user ID in the URL, an attacker can...
CVE-2025-25777
Insecure Direct Object Reference IDOR in Codeastro Bus Ticket Booking System v1.0 allows unauthorized access to user profiles. By manipulating the user ID in the URL, an attacker can access another user's profile without proper authentication or authorization checks...
CVE-2025-25777
Insecure Direct Object Reference IDOR in Codeastro Bus Ticket Booking System v1.0 allows unauthorized access to user profiles. By manipulating the user ID in the URL, an attacker can access another user's profile without proper authentication or authorization checks...
CodeAstro Bus Ticket Booking System 安全漏洞
CodeAstro Bus Ticket Booking System is a bus ticket booking system from CodeAstro. A security vulnerability exists in CodeAstro Bus Ticket Booking System version 1.0, which stems from an insecure direct object reference that could lead to unauthorized access to user data...
CodeAstro Internet Banking System 安全漏洞
CodeAstro Internet Banking System is a PHP online banking system from CodeAstro. A security vulnerability exists in CodeAstro Internet Banking System version 2.0.0, which originates from improper handling of the parameter name in /admin/pagesaccount.php, which could lead to a cross-site scripting...
CodeAstro Internet Banking System 安全漏洞
CodeAstro Internet Banking System is a PHP online banking system from CodeAstro. A security vulnerability exists in CodeAstro Internet Banking System version 2.0.0, which stems from improper file upload validation and could lead to remote code execution...
📄 CodeAstro Online Railway Reservation System 1.0 Cross Site Scripting
CodeAstro Online Railway Reservation System version 1.0 suffers from a cross site scripting vulnerability. Exploit Title: XSS Vulnerability in Online Railway Reservation System 1.0 Date: 2024-08-15 Exploit Author: Raj Nandi Vendor Homepage: https://codeastro.com/ Software Link:...
CodeAstro Internet Banking System 安全漏洞
CodeAstro Internet Banking System is a PHP online banking system from CodeAstro. A security vulnerability exists in CodeAstro Internet Banking System version 2.0.0, which is caused by stored cross-site scripting in the name parameter...
CVE-2025-3205
A vulnerability, which was classified as critical, was found in CodeAstro Student Grading System 1.0. This affects an unknown part of the file studentsubject.php. The manipulation of the argument studentId leads to sql injection. It is possible to initiate the attack remotely. The exploit has bee...
CVE-2025-3204
A vulnerability, which was classified as critical, has been found in CodeAstro Car Rental System 1.0. Affected by this issue is some unknown functionality of the file /returncar.php. The manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The exploit has...
CVE-2025-3205
A vulnerability, which was classified as critical, was found in CodeAstro Student Grading System 1.0. This affects an unknown part of the file studentsubject.php. The manipulation of the argument studentId leads to sql injection. It is possible to initiate the attack remotely. The exploit has bee...
CVE-2025-3204
A vulnerability, which was classified as critical, has been found in CodeAstro Car Rental System 1.0. Affected by this issue is some unknown functionality of the file /returncar.php. The manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The exploit has...
CVE-2025-3204
A vulnerability, which was classified as critical, has been found in CodeAstro Car Rental System 1.0. Affected by this issue is some unknown functionality of the file /returncar.php. The manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The exploit has...
CVE-2025-3205 CodeAstro Student Grading System studentsubject.php sql injection
A vulnerability, which was classified as critical, was found in CodeAstro Student Grading System 1.0. This affects an unknown part of the file studentsubject.php. The manipulation of the argument studentId leads to sql injection. It is possible to initiate the attack remotely. The exploit has bee...
CVE-2025-3205 CodeAstro Student Grading System studentsubject.php sql injection
A vulnerability, which was classified as critical, was found in CodeAstro Student Grading System 1.0. This affects an unknown part of the file studentsubject.php. The manipulation of the argument studentId leads to sql injection. It is possible to initiate the attack remotely. The exploit has bee...
CVE-2025-3205
CVE-2025-3205 affects CodeAstro Student Grading System 1.0. The vulnerability is in the studentsubject.php file, where manipulating the studentId parameter leads to SQL injection. Exploitation can be performed remotely via a network attack, and the exploit has been publicly disclosed. There is no...
CVE-2025-3204 CodeAstro Car Rental System returncar.php sql injection
A vulnerability, which was classified as critical, has been found in CodeAstro Car Rental System 1.0. Affected by this issue is some unknown functionality of the file /returncar.php. The manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The exploit has...
CVE-2025-3204
The CVE-2025-3204 entry concerns CodeAstro Car Rental System 1.0, where the /returncar.php file’s ID parameter can be manipulated to perform SQL injection. The vulnerability allows remote exploitation and is classified as critical, with multiple sources confirming the issue and its potential impa...
CVE-2025-3204 CodeAstro Car Rental System returncar.php sql injection
A vulnerability, which was classified as critical, has been found in CodeAstro Car Rental System 1.0. Affected by this issue is some unknown functionality of the file /returncar.php. The manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The exploit has...
CodeAstro Student Grading System 安全漏洞
CodeAstro Student Grading System is a student grading system from CodeAstro. A security vulnerability exists in CodeAstro Student Grading System version 1.0, which stems from an incorrect manipulation of the parameter studentId that can lead to SQL injection...