Vulnerabilities > CVE-2024-0543 - Unspecified vulnerability in Codeastro Real Estate Management System

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

codeastro

NVD

Published: 2024-01-15

Updated: 2024-11-21

Summary

A vulnerability classified as critical has been found in CodeAstro Real Estate Management System up to 1.0. This affects an unknown part of the file propertydetail.php. The manipulation of the argument pid leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-250713 was assigned to this vulnerability.

Vulnerable Configurations

Part	Description	Count
Application	Codeastro Codeastro Real Estate Management System *	1

References

https://drive.google.com/drive/folders/1U2nirIi6OtuCi-vrD2-VHyJbsHK5yA7t?usp=sharing
https://drive.google.com/drive/folders/1U2nirIi6OtuCi-vrD2-VHyJbsHK5yA7t?usp=sharing
https://vuldb.com/?ctiid.250713
https://vuldb.com/?ctiid.250713
https://vuldb.com/?id.250713
https://vuldb.com/?id.250713