Membership Management System Security Vulnerabilities and Issues — Membership Management System CVE List

Lucene search

CodeastroMembership Management System

4 matches found

CVE•added 2024/09/27 3:15 p.m.•49 views

CVE-2024-46470

Cross Site Scripting vulnerability in CodeAstro Membership Management System 1.0 allows attackers to run malicious JavaScript via the membership_type field in the edit-type.php component.

6.1CVSS6.6AI score0.00026EPSS

CVE•added 2024/09/02 5:15 a.m.•46 views

CVE-2024-45528

CodeAstro MembershipM-PHP (aka Membership Management System in PHP) 1.0 allows add_members.php fullname stored XSS.

5.4CVSS6.7AI score0.00083EPSS

CVE•added 2024/09/27 3:15 p.m.•42 views

CVE-2024-46471

The Directory Listing in /uploads/ Folder in CodeAstro Membership Management System 1.0 exposes the structure and contents of directories, potentially revealing sensitive information.

7.5CVSS6.9AI score0.00174EPSS

CVE•added 2024/09/27 3:15 p.m.•41 views

CVE-2024-46472

CodeAstro Membership Management System 1.0 is vulnerable to SQL Injection via the parameter 'email' in the Login Page.

8.6CVSS8.1AI score0.00046EPSS