CVE-2025-11593 | CodeAstro Gym Management System 1.0 delete-equipment.php ID sql injection

Inserito da Angelo Barbosa | Ott 10, 2025 | CVE

A vulnerability was found in CodeAstro Gym Management System 1.0. It has been classified as critical. This vulnerability affects unknown code of the file /admin/actions/delete-equipment.php. This manipulation of the argument ID causes sql injection.

This vulnerability appears as CVE-2025-11593. The attack may be initiated remotely. In addition, an exploit is available.

CVE-2025-11593 | CodeAstro Gym Management System 1.0 delete-equipment.php ID sql injection

Post correlati

CVE-2024-42618 | Pligg CMS 2.0.2 /module.php cross-site request forgery

CVE-2023-5958 | POST SMTP Mailer Plugin up to 2.7.0 on WordPress Email Message Content cross site scripting

CVE-2020-6158 | Opera Mini up to 52.1 on Android Address Bar clickjacking

CVE-2025-7143 | SourceCodester Best Salon Management System 1.0 Update Tax Page /panel/edit-tax.php Tax Name cross site scripting