4 matches found
CVE-2025-6329
A vulnerability was found in ScriptAndTools Real Estate Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file userdelete.php of the component User Delete Handler. The manipulation of the argument ID leads to authorization bypass. The attack m...
CVE-2025-6329 ScriptAndTools Real Estate Management System User Delete userdelete.php authorization
A vulnerability was found in ScriptAndTools Real Estate Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file userdelete.php of the component User Delete Handler. The manipulation of the argument ID leads to authorization bypass. The attack m...
PT-2025-26296 · Scriptandtools · Scriptandtools Real Estate Management System
Name of the Vulnerable Software and Affected Versions: ScriptAndTools Real Estate Management System version 1.0 Description: A critical issue affects the unknown processing of the file userdelete.php of the component User Delete Handler in ScriptAndTools Real Estate Management System. The...
CVE-2020-8425
CVE-2020-8425 affects Cups Easy (Purchase & Inventory) 1.0 web application. The vulnerability is a Cross-Site Request Forgery (CSRF) that can lead to admin account deletion via userdelete.php (and related password-reset/administration actions) as described in multiple sources. Exploitation detail...