CVE-2025-14898 | CodeAstro Real Estate Management System 1.0 Administrator Endpoint userbuilderdelete.php sql injection

Inserito da Angelo Barbosa | Dic 18, 2025 | CVE

A vulnerability categorized as critical has been discovered in CodeAstro Real Estate Management System 1.0. This affects an unknown function of the file /admin/userbuilderdelete.php of the component Administrator Endpoint. The manipulation results in sql injection.

This vulnerability is reported as CVE-2025-14898. The attack can be launched remotely. Moreover, an exploit is present.

CVE-2025-14898 | CodeAstro Real Estate Management System 1.0 Administrator Endpoint userbuilderdelete.php sql injection

Post correlati

CVE-2025-11495 | GNU Binutils 2.45 Linker elf64-x86-64.c elf_x86_64_relocate_section heap-based overflow (Bug 33502)

CVE-2024-32482 | Tillitis tkey-device-signer up to 0.x USB Interface out-of-bounds (GHSA-frqc-62hv-379p)

CVE-2025-5229 | Campcodes Online Hospital Management System 1.0 /admin/view-patient.php viewid sql injection

CVE-2024-56826 | OpenJPEG up to 2.4.0 bin/common/color.c opj_j2k_add_tlmarker heap-based overflow