Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CodeAstro — Vulnerabilities & Security Advisories 124

Browse all 124 CVE security advisories affecting CodeAstro. AI-powered Chinese analysis, POCs, and references for each vulnerability.

CodeAstro operates as a software development and IT services provider, primarily focusing on custom application development and digital transformation solutions for enterprise clients. Security audits have identified a significant volume of vulnerabilities within its ecosystem, with 122 CVEs currently on record. These flaws predominantly involve remote code execution and cross-site scripting, indicating persistent weaknesses in input validation and session management across various deployed modules. Additionally, several instances of privilege escalation have been documented, suggesting inadequate access control mechanisms in legacy systems. While no single catastrophic breach has been publicly attributed solely to CodeAstro, the high frequency of critical severity ratings highlights systemic issues in their secure development lifecycle. Recent patches have addressed some remote execution vectors, yet the sheer number of outstanding issues necessitates rigorous third-party security assessments to mitigate ongoing risks for dependent organizations.

Top products by CodeAstro: Real Estate Management System Online Classroom Gym Management System Internet Banking System Membership Management System House Rental Management System Hospital Management System Online Railway Reservation System Online Food Ordering System POS and Inventory Management System Online Job Portal Patient Record Management System Online Leave Application Simple Hospital Management System Food Ordering System Student Grading System Car Rental System POS System Restaurant POS System Vehicle Booking System University Management System Expense Management System Online Movie Ticket Booking System Leave Management System Simple House Rental System Simple Inventory System Simple Banking System Stock Management System Electricity Billing System Simple Pharmacy Management
CVE IDTitleCVSSSeverityPublished
CVE-2026-8132 CodeAstro Leave Management System login.php sql injection — Leave Management SystemCWE-89 7.3 High2026-05-08
CVE-2026-8097 CodeAstro Online Classroom askquery.php sql injection — Online ClassroomCWE-89 6.3 Medium2026-05-07
CVE-2026-7745 CodeAstro Online Classroom facultydetails sql injection — Online ClassroomCWE-89 6.3 Medium2026-05-04
CVE-2026-7744 CodeAstro Online Classroom addnewstudent sql injection — Online ClassroomCWE-89 6.3 Medium2026-05-04
CVE-2026-7743 CodeAstro Online Classroom studentdetails sql injection — Online ClassroomCWE-89 6.3 Medium2026-05-04
CVE-2026-7742 CodeAstro Online Classroom facultylogin sql injection — Online ClassroomCWE-89 6.3 Medium2026-05-04
CVE-2026-7741 CodeAstro Online Classroom studentlogin sql injection — Online ClassroomCWE-89 6.3 Medium2026-05-04
CVE-2026-7196 CodeAstro Online Classroom guestdetails sql injection — Online ClassroomCWE-89 6.3 Medium2026-04-27
CVE-2026-7148 CodeAstro Online Classroom addnewfaculty sql injection — Online ClassroomCWE-89 6.3 Medium2026-04-27
CVE-2026-7071 CodeAstro Online Job Portal user-cvs file information disclosure — Online Job PortalCWE-538 5.3 Medium2026-04-27
CVE-2026-7028 CodeAstro Online Job Portal All Jobs delete-jobs.php sql injection — Online Job PortalCWE-89 4.7 Medium2026-04-26
CVE-2026-6201 CodeAstro Online Job Portal Delete Job Posting job-delete.php access control — Online Job PortalCWE-284 5.4 Medium2026-04-13
CVE-2026-6033 CodeAstro Online Classroom updatedetailsfromstudent.php sql injection — Online ClassroomCWE-89 6.3 Medium2026-04-10
CVE-2026-6010 CodeAstro Online Classroom takeassessment2.php sql injection — Online ClassroomCWE-89 6.3 Medium2026-04-10
CVE-2026-5580 CodeAstro Online Classroom Parameter addvideos.php sql injection — Online ClassroomCWE-89 6.3 Medium2026-04-05
CVE-2026-5579 CodeAstro Online Classroom Parameter updatedetailsfromfaculty.php sql injection — Online ClassroomCWE-89 6.3 Medium2026-04-05
CVE-2026-5578 CodeAstro Online Classroom Parameter addassessment.php sql injection — Online ClassroomCWE-89 6.3 Medium2026-04-05
CVE-2026-3137 CodeAstro Food Ordering System food_ordering.exe stack-based overflow — Food Ordering SystemCWE-121 5.3 Medium2026-02-25
CVE-2025-14900 CodeAstro Real Estate Management System Administrator Endpoint userdelete.php sql injection — Real Estate Management SystemCWE-89 4.7 Medium2025-12-19
CVE-2025-14899 CodeAstro Real Estate Management System Administrator Endpoint stateadd.php sql injection — Real Estate Management SystemCWE-89 4.7 Medium2025-12-19
CVE-2025-14898 CodeAstro Real Estate Management System Administrator Endpoint userbuilderdelete.php sql injection — Real Estate Management SystemCWE-89 4.7 Medium2025-12-18
CVE-2025-14897 CodeAstro Real Estate Management System Administrator Endpoint useragentdelete.php sql injection — Real Estate Management SystemCWE-89 4.7 Medium2025-12-18
CVE-2025-13280 CodeAstro Simple Inventory System Login index.php sql injection — Simple Inventory SystemCWE-89 7.3 High2025-11-17
CVE-2025-13172 CodeAstro Gym Management System view-member-report.php sql injection — Gym Management SystemCWE-89 6.3 Medium2025-11-14
CVE-2025-12610 CodeAstro Gym Management System view-progress-report.php sql injection — Gym Management SystemCWE-89 4.7 Medium2025-11-03
CVE-2025-12609 CodeAstro Gym Management System update-progress.php sql injection — Gym Management SystemCWE-89 4.7 Medium2025-11-03
CVE-2025-12261 CodeAstro Gym Management System remove-announcement.php sql injection — Gym Management SystemCWE-89 6.3 Medium2025-10-27
CVE-2025-12242 CodeAstro Gym Management System check-attendance.php sql injection — Gym Management SystemCWE-89 6.3 Medium2025-10-27
CVE-2025-11593 CodeAstro Gym Management System delete-equipment.php sql injection — Gym Management SystemCWE-89 6.3 Medium2025-10-11
CVE-2025-11592 CodeAstro Gym Management System edit-equipmentform.php sql injection — Gym Management SystemCWE-89 6.3 Medium2025-10-11

This page lists every published CVE security advisory associated with CodeAstro. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.