6 matches found
CVE-2025-3998
A vulnerability classified as critical was found in CodeAstro Membership Management System 1.0. This vulnerability affects unknown code of the file renew.php?id=6. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to t...
CVE-2025-3998 CodeAstro Membership Management System renew.php sql injection
A vulnerability classified as critical was found in CodeAstro Membership Management System 1.0. This vulnerability affects unknown code of the file renew.php?id=6. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to t...
CVE-2025-3998
CVE-2025-3998 affects CodeAstro Membership Management System 1.0. The vulnerability is an SQL injection in the renew.php?id=6 endpoint caused by improper handling of the ID parameter, exploitable remotely. Public disclosures exist across multiple feeds. There is no documented patched version in t...
PT-2025-18036 · Unknown · Codeastro Membership Management System
Name of the Vulnerable Software and Affected Versions: CodeAstro Membership Management System version 1.0 Description: A critical vulnerability was found in the CodeAstro Membership Management System. This issue affects unknown code of the file "renew.php?id=6". The manipulation of the ID argumen...
Design/Logic Flaw
Anantasoft Gazelle CMS 1.0 allows remote attackers to conduct a password reset for other users via a modified user parameter to renew.php...
CVE-2009-3180
CVE-2009-3180 affects Anantasoft Gazelle CMS 1.0. Remote attackers can reset passwords for other users by sending a modified user parameter to renew.php; root cause appears to be improper parameter handling in renew.php. Exploitation details are not provided in the supplied documents, and no reme...