Vulnerability CVE-2024-25866


Published: 2024-02-28   Modified: 2024-02-29

Description:
A SQL Injection vulnerability in CodeAstro Membership Management System in PHP v.1.0 allows a remote attacker to execute arbitrary SQL commands via the email parameter in the index.php component.

 References:
https://github.com/0xQRx/VulnerabilityResearch/blob/master/2024/MembershipManagementSystem-SQL_Injection_Login.md

Copyright 2026, cxsecurity.com

 

Back to Top