CVE-2025-10063

A vulnerability was identified in itsourcecode POS Point of Sale System 1.0. This vulnerability affects unknown code of the file /inventory/main/vendors/datatables/unittesting/templates/deferredtable.php. The manipulation of the argument scripts leads to cross site scripting. Remote exploitation ...

CVE-2025-10112

CVE-2025-10112 affects itsourcecode Student Information Management System 1.0. The vulnerability is a SQL injection in the file /admin/modules/department/index.php caused by manipulation of the ID parameter in an unknown function. The issue is exploitable remotely and, according to multiple sourc...

CVE-2025-10112 itsourcecode Student Information Management System index.php sql injection

A weakness has been identified in itsourcecode Student Information Management System 1.0. The impacted element is an unknown function of the file /admin/modules/department/index.php. This manipulation of the argument ID causes sql injection. The attack is possible to be carried out remotely. The...

CVE-2025-10111

A security flaw has been discovered in itsourcecode Student Information Management System 1.0. The affected element is an unknown function of the file /admin/modules/instructor/index.php. The manipulation of the argument ID results in sql injection. The attack can be executed remotely. The exploi...

CVE-2025-10111 itsourcecode Student Information Management System index.php sql injection

A security flaw has been discovered in itsourcecode Student Information Management System 1.0. The affected element is an unknown function of the file /admin/modules/instructor/index.php. The manipulation of the argument ID results in sql injection. The attack can be executed remotely. The exploi...

CVE-2025-10111

CVE-2025-10111 affects itsourcecode Student Information Management System 1.0. The vulnerable component is the file /admin/modules/instructor/index.php, where manipulation of the ID parameter enables SQL injection. The flaw is exploitable remotely and public exploits exist. Mitigation/workaround ...

PT-2025-36530

Name of the Vulnerable Software and Affected Versions: itsourcecode Student Information Management System version 1.0 Description: A weakness exists in itsourcecode Student Information Management System 1.0. The issue involves SQL injection caused by manipulation of the ID argument within an...

itsourcecode Student Information Management System SQL注入漏洞

itsourcecode Student Information Management System is an open source student information management system from itsourcecode. A SQL injection vulnerability exists in itsourcecode Student Information Management System version 1.0, which is caused by incorrect manipulation of a parameter ID that...

CVE-2025-10026

A vulnerability was found in itsourcecode POS Point of Sale System 1.0. Affected by this vulnerability is an unknown functionality of the file /inventory/main/vendors/datatables/unittesting/templates/-complexheader.php. The manipulation of the argument scripts results in cross site scripting. It ...

CVE-2025-10068

A flaw has been found in itsourcecode Online Discussion Forum 1.0. This affects an unknown function of the file /admin/adminforum/addviews.php. Executing manipulation of the argument ID can lead to sql injection. It is possible to launch the attack remotely. The exploit has been published and may...

CVE-2025-10068 itsourcecode Online Discussion Forum add_views.php sql injection

A flaw has been found in itsourcecode Online Discussion Forum 1.0. This affects an unknown function of the file /admin/adminforum/addviews.php. Executing manipulation of the argument ID can lead to sql injection. It is possible to launch the attack remotely. The exploit has been published and may...

CVE-2025-10068 itsourcecode Online Discussion Forum add_views.php sql injection

A flaw has been found in itsourcecode Online Discussion Forum 1.0. This affects an unknown function of the file /admin/adminforum/addviews.php. Executing manipulation of the argument ID can lead to sql injection. It is possible to launch the attack remotely. The exploit has been published and may...

CVE-2025-10068

The CVE-2025-10068 entry concerns itsourcecode Online Discussion Forum 1.0. A SQL injection flaw exists in the file /admin/admin_forum/add_views.php triggered by manipulating the ID argument, enabling remote exploitation. Exploits have been published and may be used. Some connected sources (PT-20...

CVE-2025-10067

A vulnerability was detected in itsourcecode POS Point of Sale System 1.0. The impacted element is an unknown function of the file /inventory/main/vendors/datatables/unittesting/templates/emptytable.php. Performing manipulation of the argument scripts results in cross site scripting. It is possib...

CVE-2025-10067

A vulnerability was detected in itsourcecode POS Point of Sale System 1.0. The impacted element is an unknown function of the file /inventory/main/vendors/datatables/unittesting/templates/emptytable.php. Performing manipulation of the argument scripts results in cross site scripting. It is possib...

CVE-2025-10067 itsourcecode POS Point of Sale System empty_table.php cross site scripting

A vulnerability was detected in itsourcecode POS Point of Sale System 1.0. The impacted element is an unknown function of the file /inventory/main/vendors/datatables/unittesting/templates/emptytable.php. Performing manipulation of the argument scripts results in cross site scripting. It is possib...

CVE-2025-10067

CVE-2025-10067 affects itsourcecode POS Point of Sale System 1.0. The vulnerability exists in the file /inventory/main/vendors/datatables/unit_testing/templates/empty_table.php where manipulating the scripts argument leads to cross-site scripting. The issue can be exploited remotely and, per mult...

CVE-2025-10064

A security flaw has been discovered in itsourcecode POS Point of Sale System 1.0. This issue affects some unknown processing of the file /inventory/main/vendors/datatables/unittesting/templates/domdatatwoheaders.php. The manipulation of the argument scripts results in cross site scripting. The...

CVE-2025-10066 itsourcecode POS Point of Sale System dymanic_table.php cross site scripting

A security vulnerability has been detected in itsourcecode POS Point of Sale System 1.0. The affected element is an unknown function of the file /inventory/main/vendors/datatables/unittesting/templates/dymanictable.php. Such manipulation of the argument scripts leads to cross site scripting. The...

CVE-2025-10066 itsourcecode POS Point of Sale System dymanic_table.php cross site scripting

A security vulnerability has been detected in itsourcecode POS Point of Sale System 1.0. The affected element is an unknown function of the file /inventory/main/vendors/datatables/unittesting/templates/dymanictable.php. Such manipulation of the argument scripts leads to cross site scripting. The...