CVE-2025-14899 | CodeAstro Real Estate Management System 1.0 Administrator Endpoint /admin/stateadd.php sql injection

Inserito da Angelo Barbosa | Dic 18, 2025 | CVE

A vulnerability identified as critical has been detected in CodeAstro Real Estate Management System 1.0. This impacts an unknown function of the file /admin/stateadd.php of the component Administrator Endpoint. This manipulation causes sql injection.

This vulnerability appears as CVE-2025-14899. The attack may be initiated remotely. In addition, an exploit is available.

CVE-2025-14899 | CodeAstro Real Estate Management System 1.0 Administrator Endpoint /admin/stateadd.php sql injection

Post correlati

CVE-2025-1339 | TOTOLINK X18 9.1.0cu.2024_B20220329 /cgi-bin/cstecgi.cgi setL2tpdConfig enable command injection

CVE-2024-53847 | basecamp trix up to 1.3.2/2.1.8 cross site scripting

CVE-2021-46965 | Linux Kernel up to 5.10.35/5.11.19/5.12.2 physmap-bt1-rom out-of-bounds

CVE-2025-47618 | BMI Adult & Kid Calculator Plugin up to 1.2.2 on WordPress cross site scripting