CVE-2025-10029 itsourcecode POS Point of Sale System complex_header_2.php cross site scripting

A security flaw has been discovered in itsourcecode POS Point of Sale System 1.0. This vulnerability affects unknown code of the file /inventory/main/vendors/datatables/unittesting/templates/complexheader2.php. Performing manipulation of the argument scripts results in cross site scripting. The...

CVE-2025-10029 itsourcecode POS Point of Sale System complex_header_2.php cross site scripting

A security flaw has been discovered in itsourcecode POS Point of Sale System 1.0. This vulnerability affects unknown code of the file /inventory/main/vendors/datatables/unittesting/templates/complexheader2.php. Performing manipulation of the argument scripts results in cross site scripting. The...

CVE-2025-10028 itsourcecode POS Point of Sale System 6776.php cross site scripting

A vulnerability was identified in itsourcecode POS Point of Sale System 1.0. This affects an unknown part of the file /inventory/main/vendors/datatables/unittesting/templates/6776.php. Such manipulation of the argument scripts leads to cross site scripting. The attack can be launched remotely. Th...

itsourcecode Online Discussion Forum SQL注入漏洞

itsourcecode Online Discussion Forum is an online forum for itsourcecode open source. A SQL injection vulnerability exists in itsourcecode Online Discussion Forum version 1.0, which is caused by an incorrect manipulation of the parameter Username resulting in a SQL injection attack...

itsourcecode POS Point of Sale System 代码注入漏洞

POS Point of Sale System is a pos point of sale system. POS Point of Sale System suffers from a cross-site scripting vulnerability that originates from the lack of effective filtering and escaping of user-supplied data in the scripts parameter of the...

PT-2025-36372

Name of the Vulnerable Software and Affected Versions: itsourcecode Online Discussion Forum version 1.0 Description: A SQL injection issue exists in itsourcecode Online Discussion Forum 1.0. The issue affects an unknown function within the /admin file. Manipulation of the Username parameter can...

itsourcecode Student Information Management System SQL注入漏洞

itsourcecode Student Information Management System is itsourcecode open source student information management system. SQL injection vulnerability exists in itsourcecode Student Information Management System version 1.0, the vulnerability stems from incorrect manipulation of the parameter uname in...

PT-2025-36402

Name of the Vulnerable Software and Affected Versions: itsourcecode POS Point of Sale System version 1.0 Description: A vulnerability exists in itsourcecode POS Point of Sale System that allows for cross site scripting. The vulnerability affects unknown code within the file...

CVE-2025-10027 itsourcecode POS Point of Sale System 2512.php cross site scripting

A vulnerability was determined in itsourcecode POS Point of Sale System 1.0. Affected by this issue is some unknown functionality of the file /inventory/main/vendors/datatables/unittesting/templates/2512.php. This manipulation of the argument scripts causes cross site scripting. The attack can be...

CVE-2025-10026 itsourcecode POS Point of Sale System -complex_header.php cross site scripting

A vulnerability was found in itsourcecode POS Point of Sale System 1.0. Affected by this vulnerability is an unknown functionality of the file /inventory/main/vendors/datatables/unittesting/templates/-complexheader.php. The manipulation of the argument scripts results in cross site scripting. It ...

CVE-2025-10026 itsourcecode POS Point of Sale System -complex_header.php cross site scripting

A vulnerability was found in itsourcecode POS Point of Sale System 1.0. Affected by this vulnerability is an unknown functionality of the file /inventory/main/vendors/datatables/unittesting/templates/-complexheader.php. The manipulation of the argument scripts results in cross site scripting. It ...

PT-2025-36325

Name of the Vulnerable Software and Affected Versions: itsourcecode POS Point of Sale System version 1.0 Description: A cross site scripting issue exists in itsourcecode POS Point of Sale System version 1.0. The vulnerability is located in an unknown functionality of the file...

itsourcecode POS Point of Sale System 代码注入漏洞

POS Point of Sale System is a pos point of sale system. POS Point of Sale System suffers from a cross-site scripting vulnerability that originates from the lack of effective filtering and escaping of user-supplied data in the scripts parameter of the...

CVE-2025-9838

A vulnerability was identified in itsourcecode Student Information Management System 1.0. Impacted is an unknown function of the file /admin/modules/subject/index.php. Such manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The exploit is publicly availab...

CVE-2025-9839

A security flaw has been discovered in itsourcecode Student Information Management System 1.0. The affected element is an unknown function of the file /admin/modules/course/index.php. Performing manipulation of the argument ID results in sql injection. Remote exploitation of the attack is possibl...

CVE-2025-9840 itsourcecode Sports Management System gametype.php sql injection

A weakness has been identified in itsourcecode Sports Management System 1.0. The impacted element is an unknown function of the file /Admin/gametype.php. Executing manipulation of the argument code can lead to sql injection. The attack can be executed remotely. The exploit has been made available...

CVE-2025-9840

The CVE-2025-9840 issue affects itsourcecode Sports Management System version 1.0, specifically the /Admin/gametype.php file. The root cause is an unsafely handled parameter (code) that allows SQL injection, enabling remote exploitation. Public exploits have been reported, and multiple sources de...

CVE-2025-9839

The CVE-2025-9839 issue affects itsourcecode Student Information Management System 1.0. Affected component/file: /admin/modules/course/index.php, where manipulating the ID argument leads to an SQL injection. Remote exploitation is possible, and public exploits are reported. Multiple connected sou...

CVE-2025-9839 itsourcecode Student Information Management System index.php sql injection

A security flaw has been discovered in itsourcecode Student Information Management System 1.0. The affected element is an unknown function of the file /admin/modules/course/index.php. Performing manipulation of the argument ID results in sql injection. Remote exploitation of the attack is possibl...

CVE-2025-9838 itsourcecode Student Information Management System index.php sql injection

A vulnerability was identified in itsourcecode Student Information Management System 1.0. Impacted is an unknown function of the file /admin/modules/subject/index.php. Such manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The exploit is publicly availab...