CVE-2024-0543: CodeAstro Real Estate Management System propertydetail.php sql injection
First published: Mon Jan 15 2024(Updated: )
A vulnerability classified as critical has been found in CodeAstro Real Estate Management System up to 1.0. This affects an unknown part of the file propertydetail.php. The manipulation of the argument pid leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-250713 was assigned to this vulnerability.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| CodeAstro Real Estate Management System | <=1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2024-0543?
CVE-2024-0543 is classified as a critical vulnerability.
How do I fix CVE-2024-0543?
To fix CVE-2024-0543, ensure that the CodeAstro Real Estate Management System is updated to a version higher than 1.0.
What type of vulnerability is CVE-2024-0543?
CVE-2024-0543 is an SQL injection vulnerability affecting propertydetail.php.
Can CVE-2024-0543 be exploited remotely?
Yes, CVE-2024-0543 can be exploited remotely by manipulating the argument pid.
Which software is affected by CVE-2024-0543?
CVE-2024-0543 affects CodeAstro Real Estate Management System versions up to 1.0.
- agent/title
- agent/references
- agent/author
- agent/weakness
- agent/type
- agent/first-publish-date
- agent/description
- agent/severity
- agent/softwarecombine
- collector/epss-latest
- source/FIRST
- agent/epss
- agent/event
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- vendor/codeastro
- canonical/codeastro real estate management system
- version/codeastro real estate management system/1.0