Complaint Management System
Approved changes feed: RSS · Atom
cpe:2.3:a:codeastro:complaint_management_system:1.0:*:*:*:-:*:*:*
part: a version: 1.0 update: *
| Vendor | Codeastro (f92dc1fe-f2d7-58ad-92b0-40a98a9042be) |
|---|---|
| Product | Complaint Management System (e9d54961-147f-512f-a911-fa2d22d51b20) |
| Edition | * |
| Language | * |
| Software edition | - |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-56889 |
vulnerable | 2026-06-03 14:57:50.375321 |
Details available
Incorrect access control in the endpoint /admin/m_delete.php of CodeAstro Complaint Management System v1.0 allows unauthorized attackers to arbitrarily delete complaints via modification of the id parameter.
Published: 2025-02-06T00:00:00.000Z
Updated: 2025-03-18T14:44:40.063Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-55509 |
vulnerable | 2026-06-03 14:57:42.016205 |
Details available
SQL injection vulnerability in CodeAstro Complaint Management System v.1.0 allows a remote attacker to execute arbitrary code and escalate privileges via the id parameter of the delete.php component.
Published: 2024-12-20T00:00:00.000Z
Updated: 2024-12-26T19:27:35.434Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-55507 |
vulnerable | 2026-06-03 14:57:42.015866 |
Details available
An issue in CodeAstro Complaint Management System v.1.0 allows a remote attacker to escalate privileges via the delete_e.php component.
Published: 2025-01-03T00:00:00.000Z
Updated: 2025-01-03T20:21:42.826Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-55506 |
vulnerable | 2026-06-03 14:57:42.015364 |
Details available
An IDOR vulnerability in CodeAstro's Complaint Management System v1.0 (version with 0 updates) enables an attacker to execute arbitrary code and obtain sensitive information via the delete.php file and modifying the id parameter.
Published: 2024-12-18T00:00:00.000Z
Updated: 2024-12-26T19:24:52.343Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.