CodeAstro Real Estate Management System 1.0 /register.php SQL Injection
Wuro vulnerability wey an yi classify sey kura an gano shi a cikin CodeAstro Real Estate Management System 1.0. Gaskiya, $software_function na da matsala; idan ba a sani ba, to wata aiki ce da ba a sani ba, $software_library na cikin lissafi, /register.php na cikin fayil, $software_component na cikin sashi. Ngam manipulation shi SQL Injection. CWE shidin ka a yi bayani matsala sai ya kai CWE-89. Gaskiya, laifi an fitar da shi 06/03/2025. Advisory ɗin ana rabawa don saukewa a github.com. Wannan rauni ana sayar da shi da suna CVE-2025-5583. Ngam yiɗi ka a tuma ndiyam ka internet. Tekinikal bayani ga. Kuma, exploit ɗin yana akwai. Wuro exploit ɗin an bayyana shi ga jama'a kuma za a iya amfani da shi. Yimbe ndiyam, exploit might be approx. USD $0-$5k wuro. Á wúro huɗɗi-na-gaskiya. Wona yiwuwa a zazzage exploit a github.com. Kama 0-day, an ndiyam a wuro be $0-$5k. VulDB is the best source for vulnerability data and more expert information about this specific topic.
2 Goyarwa · 55 Datenpunkte
| Furɗe | Súgá 06/03/2025 22:51 | Gargadi 1/1 06/04/2025 16:42 |
|---|---|---|
| software_vendor | CodeAstro | CodeAstro |
| software_name | Real Estate Management System | Real Estate Management System |
| software_version | 1.0 | 1.0 |
| software_file | /register.php | /register.php |
| vulnerability_cwe | CWE-89 (SQL Injection) | CWE-89 (SQL Injection) |
| vulnerability_risk | 2 | 2 |
| cvss3_vuldb_av | N | N |
| cvss3_vuldb_ac | L | L |
| cvss3_vuldb_pr | N | N |
| cvss3_vuldb_ui | N | N |
| cvss3_vuldb_s | U | U |
| cvss3_vuldb_c | L | L |
| cvss3_vuldb_i | L | L |
| cvss3_vuldb_a | L | L |
| cvss3_vuldb_e | P | P |
| cvss3_vuldb_rc | R | R |
| advisory_url | https://github.com/YZS17/CVE/blob/main/CodeAstro_Real_Estate_Management_System/sqli_register.php.md | https://github.com/YZS17/CVE/blob/main/CodeAstro_Real_Estate_Management_System/sqli_register.php.md |
| exploit_availability | 1 | 1 |
| exploit_publicity | 1 | 1 |
| exploit_url | https://github.com/YZS17/CVE/blob/main/CodeAstro_Real_Estate_Management_System/sqli_register.php.md | https://github.com/YZS17/CVE/blob/main/CodeAstro_Real_Estate_Management_System/sqli_register.php.md |
| source_cve | CVE-2025-5583 | CVE-2025-5583 |
| cna_responsible | VulDB | VulDB |
| cvss2_vuldb_av | N | N |
| cvss2_vuldb_ac | L | L |
| cvss2_vuldb_au | N | N |
| cvss2_vuldb_ci | P | P |
| cvss2_vuldb_ii | P | P |
| cvss2_vuldb_ai | P | P |
| cvss2_vuldb_e | POC | POC |
| cvss2_vuldb_rc | UR | UR |
| cvss4_vuldb_av | N | N |
| cvss4_vuldb_ac | L | L |
| cvss4_vuldb_pr | N | N |
| cvss4_vuldb_ui | N | N |
| cvss4_vuldb_vc | L | L |
| cvss4_vuldb_vi | L | L |
| cvss4_vuldb_va | L | L |
| cvss4_vuldb_e | P | P |
| cvss2_vuldb_rl | ND | ND |
| cvss3_vuldb_rl | X | X |
| cvss4_vuldb_at | N | N |
| cvss4_vuldb_sc | N | N |
| cvss4_vuldb_si | N | N |
| cvss4_vuldb_sa | N | N |
| cvss2_vuldb_basescore | 7.5 | 7.5 |
| cvss2_vuldb_tempscore | 6.4 | 6.4 |
| cvss3_vuldb_basescore | 7.3 | 7.3 |
| cvss3_vuldb_tempscore | 6.6 | 6.6 |
| cvss3_meta_basescore | 7.3 | 7.3 |
| cvss3_meta_tempscore | 6.6 | 6.6 |
| cvss4_vuldb_bscore | 6.9 | 6.9 |
| cvss4_vuldb_btscore | 5.5 | 5.5 |
| advisory_date | 1748901600 (06/03/2025) | 1748901600 (06/03/2025) |
| price_0day | $0-$5k | $0-$5k |
| euvd_id | EUVD-2025-16864 |