Codeastro Internet_banking_system
5 CVEs affecting Codeastro Internet_banking_system. Latest disclosed: 2025-04-17. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-29017 | High | 8.8 | 2025-04-10 | A Remote Code Execution (RCE) vulnerability exists in Code Astro Internet Banking System 2.0.0 due to improper file upload validation in the profile_pic parame… |
CVE-2024-56924 | High | 7.3 | 2025-01-22 | A Cross Site Request Forgery (CSRF) vulnerability in Code Astro Internet banking system 2.0.0 allows remote attackers to execute arbitrary JavaScript on the ad… |
CVE-2024-0194 | Medium | 6.3 | 2024-01-02 | A vulnerability, which was classified as critical, has been found in CodeAstro Internet Banking System up to 1.0. This issue affects some unknown processing of… |
CVE-2025-29015 | Medium | 6.1 | 2025-04-17 | Code Astro Internet Banking System 2.0.0 is vulnerable to Cross Site Scripting (XSS) via the name parameter in /admin/pages_account.php. |
CVE-2025-29018 | Medium | 4.8 | 2025-04-09 | A Stored Cross-Site Scripting (XSS) vulnerability exists in the name parameter of pages_add_acc_type.php in Code Astro Internet Banking System 2.0.0. |