CVE-2025-11589 | CodeAstro Gym Management System 1.0 /admin/user-payment.php plan sql injection

Inserito da Angelo Barbosa | Ott 10, 2025 | CVE

A vulnerability, which was classified as critical, has been found in CodeAstro Gym Management System 1.0. Affected is an unknown function of the file /admin/user-payment.php. Performing manipulation of the argument plan results in sql injection.

This vulnerability is cataloged as CVE-2025-11589. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2025-11589 | CodeAstro Gym Management System 1.0 /admin/user-payment.php plan sql injection

Post correlati

CVE-2025-5561 | PHPGurukul Curfew e-Pass Management System 1.0 view-pass-detail.php viewid sql injection

CVE-2025-45984 | Blink BL-X26_DA3 sub_45B238 routepwd command injection

CVE-2025-8734 | GNU Bison up to 3.8.2 src/scan-code.c code_free double free (Issue 115)

VDB-256317 | Backdoor.Win32.Agent.amt FTP Server missing authentication