CVE-2025-12604

The CVE-2025-12604 entry concerns itsourcecode Online Loan Management System 1.0. Affected component: /load_fields.php. Root cause: manipulation of the loan_id parameter enables SQL injection. The issue is exploitable remotely and public disclosure exists. Several connected sources corroborate th...

itsourcecode Online Loan Management System SQL注入漏洞

itsourcecode Online Loan Management System is an online loan management system from itsourcecode open source. A SQL injection vulnerability exists in version 1.0 of itsourcecode Online Loan Management System, which stems from incorrect manipulation of the parameter ID in the file /manageloan.php,...

PT-2025-44738

Name of the Vulnerable Software and Affected Versions itsourcecode Online Loan Management System version 1.0 Description A flaw exists in itsourcecode Online Loan Management System that allows for SQL injection. This issue affects an unspecified part of the /load fields.php file. The loan id...

PT-2025-44740

Name of the Vulnerable Software and Affected Versions itsourcecode Online Loan Management System version 1.0 Description A flaw exists in the processing of the /manage borrower.php file within itsourcecode Online Loan Management System. Manipulation of the ID argument can lead to a SQL injection...

CVE-2025-11736

A flaw has been found in itsourcecode Online Examination System 1.0. Affected by this issue is some unknown functionality of the file /index.php. This manipulation of the argument Username causes sql injection. It is possible to initiate the attack remotely. The exploit has been published and may...

CVE-2025-11736 itsourcecode Online Examination System index.php sql injection

A flaw has been found in itsourcecode Online Examination System 1.0. Affected by this issue is some unknown functionality of the file /index.php. This manipulation of the argument Username causes sql injection. It is possible to initiate the attack remotely. The exploit has been published and may...

CVE-2025-11736 itsourcecode Online Examination System index.php sql injection

A flaw has been found in itsourcecode Online Examination System 1.0. Affected by this issue is some unknown functionality of the file /index.php. This manipulation of the argument Username causes sql injection. It is possible to initiate the attack remotely. The exploit has been published and may...

CVE-2025-11736

CVE-2025-11736 affects itsourcecode Online Examination System 1.0. Affected component: file /index.php, where manipulation of the Username parameter enables SQL injection. Root cause: improper handling of input leading to database query manipulation. Impact: remote exploitation with high likeliho...

PT-2025-42160

Name of the Vulnerable Software and Affected Versions itsourcecode Online Examination System version 1.0 Description A flaw exists in itsourcecode Online Examination System 1.0, related to an unknown functionality within the /index.php file. Manipulating the Username argument can lead to a SQL...

itsourcecode Online Examination System SQL注入漏洞

itsourcecode Online Examination System is a itsourcecode open source online examination system. A SQL injection vulnerability exists in version 1.0 of itsourcecode Online Examination System, which stems from an incorrect manipulation of the parameter Username in the file /index.php, which could...

CVE-2025-11434 itsourcecode Student Transcript Processing System login.php sql injection

A weakness has been identified in itsourcecode Student Transcript Processing System 1.0. Affected is an unknown function of the file /login.php. Executing a manipulation of the argument uname can lead to sql injection. It is possible to launch the attack remotely. The exploit has been made...

CVE-2025-11434

Summary: CVE-2025-11434 affects itsourcecode’s Student Transcript Processing System v1.0, with a SQL injection flaw in the /login.php file via the uname parameter. The issue can be exploited remotely and publicly available exploit code exists. Several sources corroborate the impact and exposure, ...

CVE-2025-11434 itsourcecode Student Transcript Processing System login.php sql injection

A weakness has been identified in itsourcecode Student Transcript Processing System 1.0. Affected is an unknown function of the file /login.php. Executing a manipulation of the argument uname can lead to sql injection. It is possible to launch the attack remotely. The exploit has been made...

CVE-2025-11433

CVE-2025-11433 affects the open-source itsourcecode Leave Management System v1.0. The vulnerability resides in the Redirect/Query Parameter Handler within the file /module/employee/controller.php?action=reset, where manipulation of the argument ID enables reflected cross-site scripting (XSS). Att...

CVE-2025-11432

CVE-2025-11432 affects itsourcecode Leave Management System 1.0. The vulnerability is in the /reset.php file where manipulating the employid parameter enables an SQL injection. The attack can be performed remotely and the exploit is publicly available. Multiple connected sources corroborate the i...

EUVD-2025-20519

Malicious code in bioql PyPI...

EUVD-2024-47938

Malicious code in bioql PyPI...

EUVD-2024-46894

Malicious code in bioql PyPI...

EUVD-2024-33202

Malicious code in bioql PyPI...

EUVD-2025-27179

Malicious code in bioql PyPI...