CVE-2025-10673

A vulnerability was determined in itsourcecode Student Information Management System 1.0. The impacted element is an unknown function of the file /admin/modules/class/index.php. This manipulation of the argument classId causes sql injection. The attack may be initiated remotely. The exploit has...

CVE-2025-10673 itsourcecode Student Information Management System index.php sql injection

A vulnerability was determined in itsourcecode Student Information Management System 1.0. The impacted element is an unknown function of the file /admin/modules/class/index.php. This manipulation of the argument classId causes sql injection. The attack may be initiated remotely. The exploit has...

CVE-2025-10670

A flaw has been found in itsourcecode E-Logbook with Health Monitoring System for COVID-19 1.0. This issue affects some unknown processing of the file /checkprofile.php. Executing manipulation of the argument profileid can lead to sql injection. It is possible to launch the attack remotely. The...

CVE-2025-10668

A security vulnerability has been detected in itsourcecode Online Discussion Forum 1.0. This affects an unknown part of the file /members/composemsgadmin.php. Such manipulation of the argument ID leads to sql injection. The attack may be performed from remote. The exploit has been disclosed...

CVE-2025-10670

CVE-2025-10670 affects itsourcecode E-Logbook with Health Monitoring System for COVID-19 1.0. The vulnerability is in the processing of /check_profile.php, where manipulating the profile_id parameter can lead to an SQL injection. The issue is exploitable remotely and exploits have been published ...

CVE-2025-10668 itsourcecode Online Discussion Forum compose_msg_admin.php sql injection

A security vulnerability has been detected in itsourcecode Online Discussion Forum 1.0. This affects an unknown part of the file /members/composemsgadmin.php. Such manipulation of the argument ID leads to sql injection. The attack may be performed from remote. The exploit has been disclosed...

CVE-2025-10668 itsourcecode Online Discussion Forum compose_msg_admin.php sql injection

A security vulnerability has been detected in itsourcecode Online Discussion Forum 1.0. This affects an unknown part of the file /members/composemsgadmin.php. Such manipulation of the argument ID leads to sql injection. The attack may be performed from remote. The exploit has been disclosed...

CVE-2025-10668

The CVE concerns itsourcecode Online Discussion Forum 1.0, where manipulation of the ID parameter in /members/compose_msg_admin.php enables SQL injection. This is a network-accessible issue with potential remote exploitation, and multiple feeds (nvd, Red Hat, CVE records, and security trackers) c...

CVE-2025-10667 itsourcecode Online Discussion Forum compose_msg.php sql injection

A weakness has been identified in itsourcecode Online Discussion Forum 1.0. Affected by this issue is some unknown functionality of the file /members/composemsg.php. This manipulation of the argument ID causes sql injection. The attack is possible to be carried out remotely. The exploit has been...

CVE-2025-10667 itsourcecode Online Discussion Forum compose_msg.php sql injection

A weakness has been identified in itsourcecode Online Discussion Forum 1.0. Affected by this issue is some unknown functionality of the file /members/composemsg.php. This manipulation of the argument ID causes sql injection. The attack is possible to be carried out remotely. The exploit has been...

CVE-2025-10631

A vulnerability was identified in itsourcecode Online Petshop Management System 1.0. Impacted is an unknown function of the file addcnp.php of the component Available Products Page. The manipulation of the argument name/description leads to cross site scripting. It is possible to initiate the...

CVE-2025-10632 itsourcecode Online Petshop Management System Admin Dashboard availableframe.php cross site scripting

A security flaw has been discovered in itsourcecode Online Petshop Management System 1.0. The affected element is an unknown function of the file availableframe.php of the component Admin Dashboard. The manipulation of the argument name/address results in cross site scripting. It is possible to...

CVE-2025-10631 itsourcecode Online Petshop Management System Available Products addcnp.php cross site scripting

A vulnerability was identified in itsourcecode Online Petshop Management System 1.0. Impacted is an unknown function of the file addcnp.php of the component Available Products Page. The manipulation of the argument name/description leads to cross site scripting. It is possible to initiate the...

CVE-2025-10631

Affects itsourcecode Online Petshop Management System 1.0, specifically the Available Products Page component. The vulnerability lies in addcnp.php where manipulation of the name/description argument enables cross-site scripting. This can be exploited remotely, and a PoC/exploit is publicly avail...

itsourcecode Online Petshop Management System 安全漏洞

itsourcecode Online Petshop Management System is itsourcecode open source an online pet store management system. A security vulnerability exists in version 1.0 of itsourcecode Online Petshop Management System, which stems from an incorrect manipulation of the name or address parameter in the file...

itsourcecode Online Discussion Forum SQL注入漏洞

itsourcecode Online Discussion Forum is an online forum of itsourcecode open source. A SQL injection vulnerability exists in itsourcecode Online Discussion Forum version 1.0, which stems from incorrect manipulation of the parameter ID in the file /members/composemsgadmin.php, which could lead to ...

itsourcecode E-Logbook with Health Monitoring System for COVID-19 SQL注入漏洞

itsourcecode E-Logbook with Health Monitoring System for COVID-19 is an electronic logging system for the New Crown Pneumonia Health Monitoring System for COVID-19 open source by itsourcecode. An SQL injection vulnerability exists in itsourcecode E-Logbook with Health Monitoring System for COVID-...

PT-2025-38293

Name of the Vulnerable Software and Affected Versions itsourcecode Online Petshop Management System version 1.0 Description A security flaw exists in itsourcecode Online Petshop Management System version 1.0. The issue is a cross-site scripting XSS vulnerability within the Admin Dashboard...

PT-2025-38381

Name of the Vulnerable Software and Affected Versions itsourcecode Online Discussion Forum version 1.0 Description A security issue exists in itsourcecode Online Discussion Forum. Manipulation of the ID argument in the /members/compose msg admin.php file can lead to SQL injection. The attack can ...

PT-2025-38411

Name of the Vulnerable Software and Affected Versions itsourcecode Student Information Management System version 1.0 Description A vulnerability exists in itsourcecode Student Information Management System version 1.0. The issue is a SQL injection affecting an unknown function within the...