CVE-2024-0424

The CVE-2024-0424 entry concerns CodeAstro Simple Banking System 1.0, with a cross-site scripting vulnerability in an unknown portion of createuser.php (Create a User Page). The issue is exploitable remotely and details indicate an XSS condition, but the provided documents do not specify affected...

CVE-2025-11357

The CVE-2025-11357 entry concerns code-projects Simple Banking System 1.0, with a SQL injection in the /createuser.php endpoint via the Name parameter due to insufficient input validation. Public exploitation is indicated, and remote initiation is possible. Multiple connected sources corroborate ...

CVE-2025-11358

CVE-2025-11358 affects code-projects Simple Banking System 1.0, specifically the file /removeuser.php. The weakness arises from manipulation of the ID parameter, enabling SQL injection. Exploitation can be performed remotely, and public exploits exist. Multiple connected sources corroborate the v...

CVE-2025-11359

CVE-2025-11359 affects code-projects Simple Banking System 1.0, specifically the /transfermoney.php file. The vulnerability is a SQL injection caused by unsafely handling the ID parameter, exposing an attacker to execute SQL commands remotely. Public exploit indication is present in the sources. ...