| Titel | CodeAstro Real Estate Management System 1.0 SQL Injection |
|---|
| Beschreibung | An SQL injection vulnerability exists in the id parameter of the /aboutedit.php page within the admin panel of the application. This vulnerability allows an attacker to manipulate the SQL query executed by the server by injecting malicious SQL code through the id parameter. |
|---|
| Quelle | ⚠️ https://github.com/EmilGallajov/zero-day/blob/main/codeastro_real_estate_ms_sqli.md |
|---|
| Benutzer | egsec (UID 77043) |
|---|
| Einreichung | 08.11.2024 10:02 (vor 1 Jahr) |
|---|
| Moderieren | 10.11.2024 09:31 (2 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 283804 [CodeAstro Real Estate Management System bis 1.0 About Us Page /aboutedit.php ID SQL Injection] |
|---|
| Punkte | 17 |
|---|