CVE Details
Basic Information
| Title | CodeAstro Real Estate Management System register.php sql injection |
|---|---|
| Type | cve |
| Published | 2025-06-04T09:31:05.606Z |
| Last Seen |
Product Information
| Vendor | CodeAstro |
|---|---|
| Product | Real Estate Management System |
| Version | 1.0 |
CVSS Information
| Base Score | 6.9 (MEDIUM) |
|---|---|
| Attack Vector | CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N |
| Confidentiality Impact | |
| Integrity Impact | |
| Availability Impact |
AI Analysis
| AI Description | A critical SQL injection vulnerability exists in CodeAstro Real Estate Management System 1.0, allowing remote attackers to inject malicious SQL code via the register.php file. This could lead to unauthorized data access or modification. The vulnerability has been publicly disclosed. |
|---|---|
| AI Severity | High |
| Vendor | CodeAstro |
| Product | Real Estate Management System |
| Affected Version | 1.0 |
Additional Information
| CVE List | |
|---|---|
| CWE List | CWE-89, CWE-74 |
| Bulletin Family | |
| Source Data | CodeAstro Real Estate Management System 1.0 |
Source Information
| Source Data | CodeAstro Real Estate Management System 1.0 |
|---|---|
| Source Link |
Description
A vulnerability classified as critical has been found in CodeAstro Real Estate Management System 1.0. Affected is an unknown function of the file /register.php. The manipulation leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
CVSS Score Summary
Base Score: 6.9 (MEDIUM)