Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CodeAstro — Vulnerabilities & Security Advisories 125

Browse all 125 CVE security advisories affecting CodeAstro. AI-powered Chinese analysis, POCs, and references for each vulnerability.

CodeAstro operates as a software development and IT services provider, primarily focusing on custom application development and digital transformation solutions for enterprise clients. Security audits have identified a significant volume of vulnerabilities within its ecosystem, with 122 CVEs currently on record. These flaws predominantly involve remote code execution and cross-site scripting, indicating persistent weaknesses in input validation and session management across various deployed modules. Additionally, several instances of privilege escalation have been documented, suggesting inadequate access control mechanisms in legacy systems. While no single catastrophic breach has been publicly attributed solely to CodeAstro, the high frequency of critical severity ratings highlights systemic issues in their secure development lifecycle. Recent patches have addressed some remote execution vectors, yet the sheer number of outstanding issues necessitates rigorous third-party security assessments to mitigate ongoing risks for dependent organizations.

Top products by CodeAstro: Real Estate Management System Online Classroom Gym Management System Internet Banking System Membership Management System House Rental Management System Hospital Management System Online Railway Reservation System Online Food Ordering System POS and Inventory Management System Online Job Portal Patient Record Management System Online Leave Application Simple Hospital Management System Food Ordering System Student Grading System Car Rental System POS System Restaurant POS System University Management System Vehicle Booking System Expense Management System Online Movie Ticket Booking System Online Catering Ordering System Leave Management System Simple House Rental System Simple Inventory System Simple Banking System Stock Management System Electricity Billing System
CVE IDTitleCVSSSeverityPublished
CVE-2024-1819 CodeAstro Membership Management System Add Members Tab unrestricted upload — Membership Management SystemCWE-434 4.7 Medium2024-02-23
CVE-2024-1818 CodeAstro Membership Management System Logo unrestricted upload — Membership Management SystemCWE-434 4.7 Medium2024-02-23
CVE-2024-1268 CodeAstro Restaurant POS System update_product.php unrestricted upload — Restaurant POS SystemCWE-434 6.3 Medium2024-02-07
CVE-2024-1267 CodeAstro Restaurant POS System create_account.php cross site scripting — Restaurant POS SystemCWE-79 3.5 Low2024-02-07
CVE-2024-1266 CodeAstro University Management System Student Registration Form st_reg.php cross site scripting — University Management SystemCWE-79 2.4 Low2024-02-07
CVE-2024-1265 CodeAstro University Management System Attendance Management att_add.php cross site scripting — University Management SystemCWE-79 2.4 Low2024-02-07
CVE-2024-1199 CodeAstro Employee Task Management System attendance-info.php denial of service — Employee Task Management SystemCWE-404 5.4 Medium2024-02-03
CVE-2024-1103 CodeAstro Real Estate Management System Feedback Form profile.php cross site scripting — Real Estate Management SystemCWE-79 3.5 Low2024-01-31
CVE-2024-1031 CodeAstro Expense Management System Add Expenses Page 5-Add-Expenses.php cross site scripting — Expense Management SystemCWE-79 3.5 Low2024-01-30
CVE-2024-1022 CodeAstro Simple Student Result Management System Add Class Page add_classes.php cross site scripting — Simple Student Result Management SystemCWE-79 2.4 Low2024-01-29
CVE-2024-0958 CodeAstro Stock Management System Add Category index.php cross site scripting — Stock Management SystemCWE-79 3.5 Low2024-01-27
CVE-2024-0782 CodeAstro Online Railway Reservation System pass-profile.php cross site scripting — Online Railway Reservation SystemCWE-79 3.5 Low2024-01-22
CVE-2024-0781 CodeAstro Internet Banking System pages_client_signup.php redirect — Internet Banking SystemCWE-601 3.5 Low2024-01-22
CVE-2024-0773 CodeAstro Internet Banking System pages_client_signup.php cross site scripting — Internet Banking SystemCWE-79 3.5 Low2024-01-21
CVE-2024-0543 CodeAstro Real Estate Management System propertydetail.php sql injection — Real Estate Management SystemCWE-89 6.3 Medium2024-01-15
CVE-2024-0424 CodeAstro Simple Banking System Create a User Page createuser.php cross site scripting — Simple Banking SystemCWE-79 3.5 Low2024-01-11
CVE-2024-0423 CodeAstro Online Food Ordering System dishes.php cross site scripting — Online Food Ordering SystemCWE-79 3.5 Low2024-01-11
CVE-2024-0422 CodeAstro POS and Inventory Management System New Item Creation Page new_item cross site scripting — POS and Inventory Management SystemCWE-79 3.5 Low2024-01-11
CVE-2024-0346 CodeAstro Vehicle Booking System Feedback Page user-give-feedback.php cross site scripting — Vehicle Booking SystemCWE-79 3.5 Low2024-01-09
CVE-2024-0345 CodeAstro Vehicle Booking System User Registration usr-register.php cross site scripting — Vehicle Booking SystemCWE-79 4.3 Medium2024-01-09
CVE-2024-0343 CodeAstro Simple House Rental System Login Panel cross site scripting — Simple House Rental SystemCWE-79 4.3 Medium2024-01-09
CVE-2024-0247 CodeAstro Online Food Ordering System Admin Panel sql injection — Online Food Ordering SystemCWE-89 7.3 High2024-01-05
CVE-2024-0194 CodeAstro Internet Banking System Profile Picture pages_account.php unrestricted upload — Internet Banking SystemCWE-434 6.3 Medium2024-01-02
CVE-2023-6775 CodeAstro POS and Inventory Management System item_con cross site scripting — POS and Inventory Management SystemCWE-79 3.5 Low2023-12-13
CVE-2023-6774 CodeAstro POS and Inventory Management System register_account cross site scripting — POS and Inventory Management SystemCWE-79 4.3 Medium2023-12-13
CVE-2023-6773 CodeAstro POS and Inventory Management System User Creation register_account access control — POS and Inventory Management SystemCWE-284 4.3 Medium2023-12-13
CVE-2023-5796 CodeAstro POS System Logo setting unrestricted upload — POS SystemCWE-434 6.3 Medium2023-10-26
CVE-2023-5795 CodeAstro POS System Profile Picture profil unrestricted upload — POS SystemCWE-434 6.3 Medium2023-10-26
CVE-2023-5699 CodeAstro Internet Banking System pages_view_client.php cross site scripting — Internet Banking SystemCWE-79 3.5 Low2023-10-22
CVE-2023-5698 CodeAstro Internet Banking System pages_deposit_money.php cross site scripting — Internet Banking SystemCWE-79 3.5 Low2023-10-22

This page lists every published CVE security advisory associated with CodeAstro. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.