Lucene search

K

CodeAstro Security Vulnerabilities

cve
cve

CVE-2023-5694

A vulnerability was found in CodeAstro Internet Banking System 1.0. It has been classified as problematic. Affected is an unknown function of the file pages_system_settings.php. The manipulation of the argument sys_name with the input alert(991) leads to cross site scripting. It is possible to...

6.1CVSS

6AI Score

0.001EPSS

2023-10-22 11:15 PM
25
cve
cve

CVE-2024-1823

A vulnerability classified as critical was found in CodeAstro Simple Voting System 1.0. Affected by this vulnerability is an unknown functionality of the file users.php of the component Backend. The manipulation leads to improper access controls. The attack can be launched remotely. The exploit...

5.3CVSS

5.5AI Score

0.0004EPSS

2024-02-23 04:15 PM
53
cve
cve

CVE-2024-1266

A vulnerability classified as problematic was found in CodeAstro University Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /st_reg.php of the component Student Registration Form. The manipulation of the argument Address leads to cross site scripting......

6.1CVSS

6AI Score

0.001EPSS

2024-02-07 01:15 AM
15
cve
cve

CVE-2024-0423

A vulnerability was found in CodeAstro Online Food Ordering System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file dishes.php. The manipulation of the argument res_id leads to cross site scripting. The attack may be launched remotely. The...

5.4CVSS

5.2AI Score

0.001EPSS

2024-01-11 08:15 PM
11
cve
cve

CVE-2024-0422

A vulnerability was found in CodeAstro POS and Inventory Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /new_item of the component New Item Creation Page. The manipulation of the argument new_item leads to cross...

5.4CVSS

5.2AI Score

0.001EPSS

2024-01-11 07:15 PM
11
cve
cve

CVE-2024-2076

A vulnerability was found in CodeAstro House Rental Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file booking.php/owner.php/tenant.php. The manipulation leads to missing authentication. The attack may be launched remotely. The....

5.3CVSS

5.3AI Score

0.0004EPSS

2024-03-01 07:15 PM
49
cve
cve

CVE-2024-0424

A vulnerability classified as problematic has been found in CodeAstro Simple Banking System 1.0. This affects an unknown part of the file createuser.php of the component Create a User Page. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit.....

5.4CVSS

5.2AI Score

0.001EPSS

2024-01-11 08:15 PM
10
cve
cve

CVE-2024-2149

A vulnerability classified as critical was found in CodeAstro Membership Management System 1.0. This vulnerability affects unknown code of the file settings.php. The manipulation of the argument currency leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed...

4.7CVSS

5.4AI Score

0.0004EPSS

2024-03-03 06:15 PM
31
cve
cve

CVE-2024-1824

A vulnerability, which was classified as critical, has been found in CodeAstro House Rental Management System 1.0. Affected by this issue is some unknown functionality of the file signing.php. The manipulation of the argument uname/password leads to sql injection. The attack may be launched...

7.3CVSS

7.4AI Score

0.0004EPSS

2024-02-23 04:15 PM
51
cve
cve

CVE-2024-1819

A vulnerability was found in CodeAstro Membership Management System 1.0. It has been classified as critical. This affects an unknown part of the component Add Members Tab. The manipulation of the argument Member Photo leads to unrestricted upload. It is possible to initiate the attack remotely....

4.7CVSS

4.9AI Score

0.0004EPSS

2024-02-23 03:15 PM
49
cve
cve

CVE-2024-1818

A vulnerability was found in CodeAstro Membership Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /uploads/ of the component Logo Handler. The manipulation leads to unrestricted upload. The attack may be launched remotely. The...

4.7CVSS

4.8AI Score

0.0004EPSS

2024-02-23 03:15 PM
55
cve
cve

CVE-2024-0194

A vulnerability, which was classified as critical, has been found in CodeAstro Internet Banking System up to 1.0. This issue affects some unknown processing of the file pages_account.php of the component Profile Picture Handler. The manipulation leads to unrestricted upload. The attack may be...

9.8CVSS

9.4AI Score

0.001EPSS

2024-01-02 09:15 PM
20
cve
cve

CVE-2024-2351

A vulnerability classified as critical was found in CodeAstro Ecommerce Site 1.0. Affected by this vulnerability is an unknown functionality of the file action.php of the component Search. The manipulation of the argument cat_id/brand_id/keyword leads to sql injection. The attack can be launched...

6.3CVSS

6.9AI Score

0.0004EPSS

2024-03-09 11:15 PM
35
cve
cve

CVE-2024-2333

A vulnerability classified as critical has been found in CodeAstro Membership Management System 1.0. Affected is an unknown function of the file /add_members.php. The manipulation of the argument fullname leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

6.3CVSS

6.9AI Score

0.0004EPSS

2024-03-09 04:15 PM
34
cve
cve

CVE-2024-1825

A vulnerability, which was classified as problematic, was found in CodeAstro House Rental Management System 1.0. This affects an unknown part of the component User Registration Page. The manipulation of the argument address with the input leads to cross site scripting. It is possible to initiate...

4.3CVSS

4.4AI Score

0.0004EPSS

2024-02-23 05:15 PM
51
cve
cve

CVE-2023-6775

A vulnerability was found in CodeAstro POS and Inventory Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /item/item_con. The manipulation of the argument item_name leads to cross site scripting. It is possible to initiate the attack remotely......

6.1CVSS

6AI Score

0.001EPSS

2023-12-13 09:15 PM
10
cve
cve

CVE-2023-6774

A vulnerability was found in CodeAstro POS and Inventory Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /accounts_con/register_account. The manipulation of the argument Username with the input alert(document.cookie) leads to...

5.4CVSS

5.2AI Score

0.001EPSS

2023-12-13 08:15 PM
8
cve
cve

CVE-2024-1924

A vulnerability was found in CodeAstro Membership Management System 1.0. It has been classified as critical. This affects an unknown part of the file /get_membership_amount.php. The manipulation of the argument membershipTypeId leads to sql injection. It is possible to initiate the attack...

6.3CVSS

6.8AI Score

0.0004EPSS

2024-02-27 05:15 PM
69
cve
cve

CVE-2024-1267

A vulnerability, which was classified as problematic, has been found in CodeAstro Restaurant POS System 1.0. Affected by this issue is some unknown functionality of the file create_account.php. The manipulation of the argument Full Name leads to cross site scripting. The attack may be launched...

6.1CVSS

6AI Score

0.001EPSS

2024-02-07 01:15 AM
15
cve
cve

CVE-2024-1265

A vulnerability classified as problematic has been found in CodeAstro University Management System 1.0. Affected is an unknown function of the file /att_add.php of the component Attendance Management. The manipulation of the argument Student Name leads to cross site scripting. It is possible to...

4.8CVSS

4.9AI Score

0.001EPSS

2024-02-07 12:15 AM
19
cve
cve

CVE-2024-0543

A vulnerability classified as critical has been found in CodeAstro Real Estate Management System up to 1.0. This affects an unknown part of the file propertydetail.php. The manipulation of the argument pid leads to sql injection. It is possible to initiate the attack remotely. The exploit has been....

7.5CVSS

7.8AI Score

0.001EPSS

2024-01-15 06:15 AM
16
cve
cve

CVE-2023-6773

A vulnerability has been found in CodeAstro POS and Inventory Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /accounts_con/register_account of the component User Creation Handler. The manipulation of the argument...

8.8CVSS

8.7AI Score

0.001EPSS

2023-12-13 08:15 PM
5
cve
cve

CVE-2024-1022

A vulnerability, which was classified as problematic, was found in CodeAstro Simple Student Result Management System 5.6. This affects an unknown part of the file /add_classes.php of the component Add Class Page. The manipulation of the argument Class Name leads to cross site scripting. It is...

4.8CVSS

4.9AI Score

0.001EPSS

2024-01-29 11:15 PM
11
cve
cve

CVE-2023-5695

A vulnerability was found in CodeAstro Internet Banking System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file pages_reset_pwd.php. The manipulation of the argument email with the input testing%40example.com'%26%25alert(9860) leads...

6.1CVSS

6AI Score

0.001EPSS

2023-10-22 11:15 PM
26
cve
cve

CVE-2024-0958

A vulnerability was found in CodeAstro Stock Management System 1.0 and classified as problematic. This issue affects some unknown processing of the file /index.php of the component Add Category Handler. The manipulation of the argument Category Name/Category Description leads to cross site...

5.4CVSS

5.2AI Score

0.001EPSS

2024-01-27 06:15 AM
9
cve
cve

CVE-2024-0773

A vulnerability classified as problematic was found in CodeAstro Internet Banking System 1.0. Affected by this vulnerability is an unknown functionality of the file pages_client_signup.php. The manipulation of the argument Client Full Name leads to cross site scripting. The attack can be launched.....

5.4CVSS

5.2AI Score

0.001EPSS

2024-01-22 12:15 AM
11
cve
cve

CVE-2023-5796

A vulnerability was found in CodeAstro POS System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /setting of the component Logo Handler. The manipulation leads to unrestricted upload. The attack may be launched remotely. The exploit has been...

8.8CVSS

8.6AI Score

0.001EPSS

2023-10-26 06:15 PM
22
cve
cve

CVE-2023-5697

A vulnerability classified as problematic has been found in CodeAstro Internet Banking System 1.0. This affects an unknown part of the file pages_withdraw_money.php. The manipulation of the argument account_number with the input...

6.1CVSS

6AI Score

0.001EPSS

2023-10-23 12:15 AM
24
cve
cve

CVE-2023-5696

A vulnerability was found in CodeAstro Internet Banking System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file pages_transfer_money.php. The manipulation of the argument account_number with the input...

6.1CVSS

5.9AI Score

0.001EPSS

2023-10-22 11:15 PM
24
cve
cve

CVE-2024-1031

A vulnerability was found in CodeAstro Expense Management System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file templates/5-Add-Expenses.php of the component Add Expenses Page. The manipulation of the argument item leads to cross site scripting. The...

6.1CVSS

6.1AI Score

0.001EPSS

2024-01-30 01:15 PM
9
cve
cve

CVE-2024-0781

A vulnerability, which was classified as problematic, was found in CodeAstro Internet Banking System 1.0. This affects an unknown part of the file pages_client_signup.php. The manipulation of the argument Client Full Name with the input leads to open redirect. It is possible to initiate the...

6.1CVSS

6.3AI Score

0.001EPSS

2024-01-22 04:15 PM
10
cve
cve

CVE-2023-5795

A vulnerability was found in CodeAstro POS System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /profil of the component Profile Picture Handler. The manipulation leads to unrestricted upload. The attack can be launched remotely. The.....

8.8CVSS

8.7AI Score

0.001EPSS

2023-10-26 06:15 PM
22
cve
cve

CVE-2023-5699

A vulnerability, which was classified as problematic, has been found in CodeAstro Internet Banking System 1.0. This issue affects some unknown processing of the file pages_view_client.php. The manipulation of the argument acc_name with the input Johnnie Reyes'"()&%alert(5646) leads to cross site...

6.1CVSS

6AI Score

0.001EPSS

2023-10-23 12:15 AM
18
cve
cve

CVE-2024-1103

A vulnerability was found in CodeAstro Real Estate Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file profile.php of the component Feedback Form. The manipulation of the argument Your Feedback with the input leads to cross...

5.4CVSS

5.2AI Score

0.001EPSS

2024-01-31 03:15 PM
11
cve
cve

CVE-2023-5698

A vulnerability classified as problematic was found in CodeAstro Internet Banking System 1.0. This vulnerability affects unknown code of the file pages_deposit_money.php. The manipulation of the argument account_number with the input...

6.1CVSS

6AI Score

0.001EPSS

2023-10-23 12:15 AM
28
cve
cve

CVE-2023-5693

A vulnerability was found in CodeAstro Internet Banking System 1.0 and classified as critical. This issue affects some unknown processing of the file pages_reset_pwd.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploit has been...

9.8CVSS

9.7AI Score

0.001EPSS

2023-10-22 11:15 PM
43
cve
cve

CVE-2024-1268

A vulnerability, which was classified as critical, was found in CodeAstro Restaurant POS System 1.0. This affects an unknown part of the file update_product.php. The manipulation leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

9.8CVSS

9.4AI Score

0.001EPSS

2024-02-07 02:15 AM
9
cve
cve

CVE-2024-0346

A vulnerability has been found in CodeAstro Vehicle Booking System 1.0 and classified as problematic. This vulnerability affects unknown code of the file usr/user-give-feedback.php of the component Feedback Page. The manipulation of the argument My Testemonial leads to cross site scripting. The...

5.4CVSS

5.3AI Score

0.001EPSS

2024-01-09 10:15 PM
15
cve
cve

CVE-2024-0345

A vulnerability, which was classified as problematic, was found in CodeAstro Vehicle Booking System 1.0. This affects an unknown part of the file usr/usr-register.php of the component User Registration. The manipulation of the argument Full_Name/Last_Name/Address with the input...

6.1CVSS

6AI Score

0.001EPSS

2024-01-09 09:15 PM
14
cve
cve

CVE-2024-1199

A vulnerability has been found in CodeAstro Employee Task Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file \employee-tasks-php\attendance-info.php. The manipulation of the argument aten_id leads to denial of service. The...

7.5CVSS

7.5AI Score

0.001EPSS

2024-02-03 12:15 AM
13
cve
cve

CVE-2024-0247

A vulnerability classified as critical was found in CodeAstro Online Food Ordering System 1.0. This vulnerability affects unknown code of the file /admin/ of the component Admin Panel. The manipulation of the argument Username leads to sql injection. The attack can be initiated remotely. The...

9.8CVSS

9.7AI Score

0.001EPSS

2024-01-05 07:15 PM
12
cve
cve

CVE-2024-0782

A vulnerability has been found in CodeAstro Online Railway Reservation System 1.0 and classified as problematic. This vulnerability affects unknown code of the file pass-profile.php. The manipulation of the argument First Name/Last Name/User Name leads to cross site scripting. The attack can be...

6.1CVSS

6AI Score

0.001EPSS

2024-01-22 05:15 PM
5
cve
cve

CVE-2024-0343

A vulnerability classified as problematic was found in CodeAstro Simple House Rental System 5.6. Affected by this vulnerability is an unknown functionality of the component Login Panel. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been...

6.1CVSS

6AI Score

0.001EPSS

2024-01-09 08:15 PM
13
cve
cve

CVE-2022-43086

Restaurant POS System v1.0 was discovered to contain a SQL injection vulnerability via...

4.9CVSS

5.6AI Score

0.001EPSS

2022-11-01 02:15 PM
19
3
cve
cve

CVE-2022-43085

An arbitrary file upload vulnerability in add_product.php of Restaurant POS System v1.0 allows attackers to execute arbitrary code via a crafted PHP...

7.2CVSS

7.3AI Score

0.001EPSS

2022-11-01 02:15 PM
22
2