JonMoriSenpai

3 exploits Active since Sep 2024
CVE-2024-46470 WRITEUP MEDIUM WRITEUP
Codeastro Membership Management System - XSS
Cross Site Scripting vulnerability in CodeAstro Membership Management System 1.0 allows attackers to run malicious JavaScript via the membership_type field in the edit-type.php component.
CVSS 6.1
CVE-2024-46471 WRITEUP HIGH WRITEUP
Codeastro Membership Management System - Information Disclosure
The Directory Listing in /uploads/ Folder in CodeAstro Membership Management System 1.0 exposes the structure and contents of directories, potentially revealing sensitive information.
CVSS 7.5
CVE-2024-46472 WRITEUP HIGH WRITEUP
Codeastro Membership Management System - SQL Injection
CodeAstro Membership Management System 1.0 is vulnerable to SQL Injection via the parameter 'email' in the Login Page.
CVSS 8.6