CVE-2024-25867

Published: 2024-02-28T22:15Z

Last Modified: 2025-04-01T15:27Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

A SQL Injection vulnerability in CodeAstro Membership Management System in PHP v.1.0 allows a remote attacker to execute arbitrary SQL commands via the membershipType and membershipAmount parameters in the add_type.php component. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt