| Title | CodeAstro Real Estate Management System 1.0 SQL Injection |
|---|
| Description | An SQL injection vulnerability exists in the id parameter of the /aboutedit.php page within the admin panel of the application. This vulnerability allows an attacker to manipulate the SQL query executed by the server by injecting malicious SQL code through the id parameter. |
|---|
| Source | ⚠️ https://github.com/EmilGallajov/zero-day/blob/main/codeastro_real_estate_ms_sqli.md |
|---|
| User | egsec (UID 77043) |
|---|
| Submission | 11/08/2024 10:02 (1 Year ago) |
|---|
| Moderation | 11/10/2024 09:31 (2 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 283804 [CodeAstro Real Estate Management System up to 1.0 About Us Page /aboutedit.php ID sql injection] |
|---|
| Points | 17 |
|---|