A vulnerability was found in CodeAstro Membership Management System 1.0. It has been classified as critical. This affects an unknown part of the file /get_membership_amount.php. The manipulation of the argument membershipTypeId leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-254859.
History

Wed, 18 Dec 2024 18:15:00 +0000

Type Values Removed Values Added
First Time appeared Codeastro
Codeastro membership Management System
CPEs cpe:2.3:a:codeastro:membership_management_system:1.0:*:*:*:*:*:*:*
Vendors & Products Codeastro
Codeastro membership Management System

cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published: 2024-02-27T16:31:04.454Z

Updated: 2024-08-01T18:56:22.586Z

Reserved: 2024-02-27T07:40:24.976Z

Link: CVE-2024-1924

cve-icon Vulnrichment

Updated: 2024-08-01T18:56:22.586Z

cve-icon NVD

Status : Analyzed

Published: 2024-02-27T17:15:11.380

Modified: 2024-12-18T17:55:15.300

Link: CVE-2024-1924

cve-icon Redhat

No data.