Vulnerability Description
A vulnerability classified as critical has been found in CodeAstro Real Estate Management System up to 1.0. This affects an unknown part of the file propertydetail.php. The manipulation of the argument pid leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-250713 was assigned to this vulnerability.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Codeastro | Real Estate Management System | <= 1.0 |
Related Weaknesses (CWE)
References
- https://drive.google.com/drive/folders/1U2nirIi6OtuCi-vrD2-VHyJbsHK5yA7t?usp=shaExploit
- https://vuldb.com/?ctiid.250713Permissions RequiredThird Party Advisory
- https://vuldb.com/?id.250713Third Party Advisory
- https://drive.google.com/drive/folders/1U2nirIi6OtuCi-vrD2-VHyJbsHK5yA7t?usp=shaExploit
- https://vuldb.com/?ctiid.250713Permissions RequiredThird Party Advisory
- https://vuldb.com/?id.250713Third Party Advisory
FAQ
What is CVE-2024-0543?
CVE-2024-0543 is a vulnerability with a CVSS score of 6.3 (MEDIUM). A vulnerability classified as critical has been found in CodeAstro Real Estate Management System up to 1.0. This affects an unknown part of the file propertydetail.php. The manipulation of the argumen...
How severe is CVE-2024-0543?
CVE-2024-0543 has been rated MEDIUM with a CVSS base score of 6.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-0543?
Check the references section above for vendor advisories and patch information. Affected products include: Codeastro Real Estate Management System.