CVE-2024-25867
CodeAstro Membership Management System (PHP v1.0) has a SQL Injection in add_type.php that allows remote SQL execution via membershipType and membershipAmount parameters. Affected component/file: add_type.php in Version 1.0. Underlying cause: improper input handling enabling arbitrary queries. Im...