| Titre | CodeAstro Real Estate Management System 1.0 SQL Injection |
|---|
| Description | An SQL injection vulnerability exists in the id parameter of the /aboutedit.php page within the admin panel of the application. This vulnerability allows an attacker to manipulate the SQL query executed by the server by injecting malicious SQL code through the id parameter. |
|---|
| La source | ⚠️ https://github.com/EmilGallajov/zero-day/blob/main/codeastro_real_estate_ms_sqli.md |
|---|
| Utilisateur | egsec (UID 77043) |
|---|
| Soumission | 08/11/2024 10:02 (il y a 1 Année) |
|---|
| Modérer | 10/11/2024 09:31 (2 days later) |
|---|
| Statut | Accepté |
|---|
| Entrée VulDB | 283804 [CodeAstro Real Estate Management System jusqu’à 1.0 About Us Page /aboutedit.php ID injection SQL] |
|---|
| Points | 17 |
|---|