CVE-2024-56889

Incorrect access control in the endpoint /admin/mdelete.php of CodeAstro Complaint Management System v1.0 allows unauthorized attackers to arbitrarily delete complaints via modification of the id parameter...

PT-2025-5882 · Codeastro · Codeastro Complaint Management System

Name of the Vulnerable Software and Affected Versions: CodeAstro Complaint Management System version 1.0 Description: The issue concerns incorrect access control in the endpoint "/admin/m delete.php" that allows unauthorized attackers to delete complaints arbitrarily by modifying the id parameter...

CVE-2024-56889

Incorrect access control in the endpoint /admin/mdelete.php of CodeAstro Complaint Management System v1.0 allows unauthorized attackers to arbitrarily delete complaints via modification of the id parameter...

CVE-2024-56889

CVE-2024-56889 affects CodeAstro Complaint Management System v1.0. The vulnerability is an Incorrect access control on the endpoint /admin/m_delete.php, allowing an unauthorized attacker to arbitrarily delete complaints by modifying the id parameter. The CVSS 3.1 base score is 7.5 (High) with Net...

CodeAstro Complaint Management System 安全漏洞

CodeAstro Complaint Management System is a complaint management system from CodeAstro. A security vulnerability exists in CodeAstro Complaint Management System version v1.0, which originates from incorrect access control on the /admin/mdelete.php page...

CVE-2024-12943

A vulnerability was found in CodeAstro House Rental Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /ownersignup.php. The manipulation of the argument f/e/p/m/o/n/c/s/ci/a leads to sql injection. The attack can be...

CVE-2024-12944

A vulnerability was found in CodeAstro House Rental Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /signin.php. The manipulation of the argument u/p leads to sql injection. The attack may be launched remotely. The exploit has...

CVE-2024-1824

A vulnerability, which was classified as critical, has been found in CodeAstro House Rental Management System 1.0. Affected by this issue is some unknown functionality of the file signing.php. The manipulation of the argument uname/password leads to sql injection. The attack may be launched...

CVE-2024-13038

A vulnerability was found in CodeAstro Simple Loan Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /index.php of the component Login. The manipulation of the argument email leads to sql injection. The attack can be...

CVE-2024-0247

A vulnerability classified as critical was found in CodeAstro Online Food Ordering System 1.0. This vulnerability affects unknown code of the file /admin/ of the component Admin Panel. The manipulation of the argument Username leads to sql injection. The attack can be initiated remotely. The...

CodeAstro Internet Banking System 跨站请求伪造漏洞

CodeAstro Internet Banking System is a PHP online banking system from CodeAstro. A security vulnerability exists in CodeAstro Internet Banking System version 2.0.0. An attacker can exploit this vulnerability by executing arbitrary JavaScript on the administration page pagesaccount to change accou...

CVE-2024-55507

An issue in CodeAstro Complaint Management System v.1.0 allows a remote attacker to escalate privileges via the deletee.php component...

CVE-2024-55507

An issue in CodeAstro Complaint Management System v.1.0 allows a remote attacker to escalate privileges via the deletee.php component...

PT-2025-3123 · Codeastro · Codeastro Complaint Management System

Name of the Vulnerable Software and Affected Versions: CodeAstro Complaint Management System version 1.0 Description: The issue allows a remote attacker to escalate privileges via the delete e.php component. Recommendations: For CodeAstro Complaint Management System version 1.0, consider disablin...

CodeAstro Complaint Management System 安全漏洞

CodeAstro Complaint Management System is a complaint management system from CodeAstro, Inc. A security vulnerability exists in CodeAstro Complaint Management System version 1.0, which can be exploited by a remote attacker to elevate privileges with the help of the deletee.php component...

CVE-2024-55507

An issue in CodeAstro Complaint Management System v.1.0 allows a remote attacker to escalate privileges via the deletee.php component...

CVE-2024-55507

An issue in CodeAstro Complaint Management System v.1.0 allows a remote attacker to escalate privileges via the deletee.php component...

CVE-2024-55507

CVE-2024-55507 concerns CodeAstro Complaint Management System v1.0, where the delete_e.php component enables a remote attacker to escalate privileges. The CVSSv3.1 base score is 9.8 (CRITICAL) with network access, low attack complexity, and no user interaction required. Affected product is CodeAs...

CVE-2024-13070

A vulnerability was found in CodeAstro Online Food Ordering System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/updateusers.php of the component Update User Page. The manipulation of the argument userupd leads to sql injectio...

CVE-2024-13070

A vulnerability was found in CodeAstro Online Food Ordering System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/updateusers.php of the component Update User Page. The manipulation of the argument userupd leads to sql injectio...