CVE-2025-10065 itsourcecode POS Point of Sale System dom_data_th.php cross site scripting

A weakness has been identified in itsourcecode POS Point of Sale System 1.0. Impacted is an unknown function of the file /inventory/main/vendors/datatables/unittesting/templates/domdatath.php. This manipulation of the argument scripts causes cross site scripting. The attack is possible to be...

CVE-2025-10065

CVE-2025-10065 affects itsourcecode POS Point of Sale System 1.0. The vulnerability is a cross-site scripting flaw in the scripts parameter of /inventory/main/vendors/datatables/unit_testing/templates/dom_data_th.php, caused by improper input handling. It can be exploited remotely and has been pu...

CVE-2025-10065 itsourcecode POS Point of Sale System dom_data_th.php cross site scripting

A weakness has been identified in itsourcecode POS Point of Sale System 1.0. Impacted is an unknown function of the file /inventory/main/vendors/datatables/unittesting/templates/domdatath.php. This manipulation of the argument scripts causes cross site scripting. The attack is possible to be...

CVE-2025-10064

Summary: CVE-2025-10064 affects itsourcecode POS Point of Sale System 1.0. The vulnerability is a cross-site scripting flaw in the handling of the scripts parameter within the file /inventory/main/vendors/datatables/unit_testing/templates/dom_data_two_headers.php. It can be exploited remotely and...

CVE-2025-10064 itsourcecode POS Point of Sale System dom_data_two_headers.php cross site scripting

A security flaw has been discovered in itsourcecode POS Point of Sale System 1.0. This issue affects some unknown processing of the file /inventory/main/vendors/datatables/unittesting/templates/domdatatwoheaders.php. The manipulation of the argument scripts results in cross site scripting. The...

PT-2025-36408

Name of the Vulnerable Software and Affected Versions: itsourcecode Online Discussion Forum version 1.0 Description: A SQL injection issue exists in itsourcecode Online Discussion Forum version 1.0. The flaw is located in the file /admin/admin forum/add views.php and affects an unknown function...

itsourcecode Online Discussion Forum SQL注入漏洞

itsourcecode Online Discussion Forum is an online forum of itsourcecode open source. A SQL injection vulnerability exists in itsourcecode Online Discussion Forum version 1.0, which originates from a SQL injection attack due to a misuse of the parameter ID in the file /admin/adminforum/addviews.ph...

itsourcecode POS Point of Sale System 代码注入漏洞

POS Point of Sale System is a pos point of sale system. POS Point of Sale System suffers from a cross-site scripting vulnerability that originates from the lack of effective filtering and escaping of user-supplied data in the parameter scripts in the file...

itsourcecode POS Point of Sale System 代码注入漏洞

POS Point of Sale System is a pos point of sale system. POS Point of Sale System suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameter scripts in the file...

CVE-2025-10062

A vulnerability was determined in itsourcecode Student Information Management System 1.0. This affects an unknown part of the file /admin/login.php. Executing manipulation of the argument uname can lead to sql injection. The attack may be launched remotely. The exploit has been publicly disclosed...

CVE-2025-10063 itsourcecode POS Point of Sale System deferred_table.php cross site scripting

A vulnerability was identified in itsourcecode POS Point of Sale System 1.0. This vulnerability affects unknown code of the file /inventory/main/vendors/datatables/unittesting/templates/deferredtable.php. The manipulation of the argument scripts leads to cross site scripting. Remote exploitation ...

CVE-2025-10063

The CVE concerns itsourcecode POS Point of Sale System 1.0 with a Cross-Site Scripting (XSS) vulnerability in the file /inventory/main/vendors/datatables/unit_testing/templates/deferred_table.php. The root cause is lack of proper filtering/escaping of input in the scripts parameter, enabling an a...

CVE-2025-10062

The CVE-2025-10062 entry affects itsourcecode Student Information Management System version 1.0. The vulnerability resides in the /admin/login.php file, where manipulating the uname parameter can lead to SQL injection. The issue is exploitable remotely and publicly disclosed. Multiple connected s...

CVE-2025-10062 itsourcecode Student Information Management System login.php sql injection

A vulnerability was determined in itsourcecode Student Information Management System 1.0. This affects an unknown part of the file /admin/login.php. Executing manipulation of the argument uname can lead to sql injection. The attack may be launched remotely. The exploit has been publicly disclosed...

CVE-2025-10062 itsourcecode Student Information Management System login.php sql injection

A vulnerability was determined in itsourcecode Student Information Management System 1.0. This affects an unknown part of the file /admin/login.php. Executing manipulation of the argument uname can lead to sql injection. The attack may be launched remotely. The exploit has been publicly disclosed...

CVE-2025-10033

A vulnerability has been found in itsourcecode Online Discussion Forum 1.0. This affects an unknown function of the file /admin. Such manipulation of the argument Username leads to sql injection. The attack may be performed from remote. The exploit has been disclosed to the public and may be used...

CVE-2025-10033

A vulnerability has been found in itsourcecode Online Discussion Forum 1.0. This affects an unknown function of the file /admin. Such manipulation of the argument Username leads to sql injection. The attack may be performed from remote. The exploit has been disclosed to the public and may be used...

CVE-2025-10033

CVE-2025-10033 affects itsourcecode Online Discussion Forum 1.0. The vulnerability is a SQL injection in the /admin file caused by manipulation of the Username parameter, exploitable remotely, with public disclosure. Multiple sources confirm the issue and provide varying CVSS perspectives; the NV...

CVE-2025-10033 itsourcecode Online Discussion Forum admin sql injection

A vulnerability has been found in itsourcecode Online Discussion Forum 1.0. This affects an unknown function of the file /admin. Such manipulation of the argument Username leads to sql injection. The attack may be performed from remote. The exploit has been disclosed to the public and may be used...

CVE-2025-10033 itsourcecode Online Discussion Forum admin sql injection

A vulnerability has been found in itsourcecode Online Discussion Forum 1.0. This affects an unknown function of the file /admin. Such manipulation of the argument Username leads to sql injection. The attack may be performed from remote. The exploit has been disclosed to the public and may be used...