VYPR

Internet Banking System

by Codeastro

CVEs (14)

  • CVE-2025-29017HigApr 10, 2025
    risk 0.57cvss 8.8epss 0.01

    A Remote Code Execution (RCE) vulnerability exists in Code Astro Internet Banking System 2.0.0 due to improper file upload validation in the profile_pic parameter within pages_view_client.php.

  • CVE-2024-56924HigJan 22, 2025
    risk 0.47cvss 7.3epss 0.00

    A Cross Site Request Forgery (CSRF) vulnerability in Code Astro Internet banking system 2.0.0 allows remote attackers to execute arbitrary JavaScript on the admin page (pages_account), potentially leading to unauthorized actions such as changing account settings or stealing…

  • CVE-2024-0194MedJan 2, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability, which was classified as critical, has been found in CodeAstro Internet Banking System up to 1.0. This issue affects some unknown processing of the file pages_account.php of the component Profile Picture Handler. The manipulation leads to unrestricted upload. The…

  • CVE-2023-5693MedOct 22, 2023
    risk 0.41cvss 6.3epss 0.01

    A vulnerability was found in CodeAstro Internet Banking System 1.0 and classified as critical. This issue affects some unknown processing of the file pages_reset_pwd.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The…

  • CVE-2025-29015MedApr 17, 2025
    risk 0.40cvss 6.1epss 0.00

    Code Astro Internet Banking System 2.0.0 is vulnerable to Cross Site Scripting (XSS) via the name parameter in /admin/pages_account.php.

  • CVE-2025-29018MedApr 9, 2025
    risk 0.31cvss 4.8epss 0.00

    A Stored Cross-Site Scripting (XSS) vulnerability exists in the name parameter of pages_add_acc_type.php in Code Astro Internet Banking System 2.0.0.

  • CVE-2024-0781LowJan 22, 2024
    risk 0.23cvss 3.5epss 0.01

    A vulnerability, which was classified as problematic, was found in CodeAstro Internet Banking System 1.0. This affects an unknown part of the file pages_client_signup.php. The manipulation of the argument Client Full Name with the input <meta http-equiv="refresh" content="0;…

  • CVE-2024-0773LowJan 22, 2024
    risk 0.23cvss 3.5epss 0.01

    A vulnerability classified as problematic was found in CodeAstro Internet Banking System 1.0. Affected by this vulnerability is an unknown functionality of the file pages_client_signup.php. The manipulation of the argument Client Full Name leads to cross site scripting. The…

  • CVE-2023-5699LowOct 23, 2023
    risk 0.23cvss 3.5epss 0.01

    A vulnerability, which was classified as problematic, has been found in CodeAstro Internet Banking System 1.0. This issue affects some unknown processing of the file pages_view_client.php. The manipulation of the argument acc_name with the input Johnnie Reyes'"()&%<ScRiPt…

  • CVE-2023-5698LowOct 23, 2023
    risk 0.23cvss 3.5epss 0.01

    A vulnerability classified as problematic was found in CodeAstro Internet Banking System 1.0. This vulnerability affects unknown code of the file pages_deposit_money.php. The manipulation of the argument account_number with the input 421873905--><!-…

  • CVE-2023-5697LowOct 23, 2023
    risk 0.23cvss 3.5epss 0.01

    A vulnerability classified as problematic has been found in CodeAstro Internet Banking System 1.0. This affects an unknown part of the file pages_withdraw_money.php. The manipulation of the argument account_number with the input 287359614--><!--…

  • CVE-2023-5696LowOct 22, 2023
    risk 0.23cvss 3.5epss 0.00

    A vulnerability was found in CodeAstro Internet Banking System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file pages_transfer_money.php. The manipulation of the argument account_number with the input…

  • CVE-2023-5695LowOct 22, 2023
    risk 0.23cvss 3.5epss 0.01

    A vulnerability was found in CodeAstro Internet Banking System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file pages_reset_pwd.php. The manipulation of the argument email with the input…

  • CVE-2023-5694LowOct 22, 2023
    risk 0.23cvss 3.5epss 0.01

    A vulnerability was found in CodeAstro Internet Banking System 1.0. It has been classified as problematic. Affected is an unknown function of the file pages_system_settings.php. The manipulation of the argument sys_name with the input leads to cross…