CVE-2025-9838

CVE-2025-9838 affects itsourcecode Student Information Management System 1.0. The vulnerability is an SQL injection in the unknown function of the file /admin/modules/subject/index.php caused by manipulation of the ID parameter. The issue can be exploited remotely and there are public exploit mat...

CVE-2025-9838 itsourcecode Student Information Management System index.php sql injection

A vulnerability was identified in itsourcecode Student Information Management System 1.0. Impacted is an unknown function of the file /admin/modules/subject/index.php. Such manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The exploit is publicly availab...

CVE-2025-9837 itsourcecode Student Information Management System index.php sql injection

A vulnerability was determined in itsourcecode Student Information Management System 1.0. This issue affects some unknown processing of the file /admin/modules/student/index.php. This manipulation of the argument studentId causes sql injection. The attack may be initiated remotely. The exploit ha...

CVE-2025-9837 itsourcecode Student Information Management System index.php sql injection

A vulnerability was determined in itsourcecode Student Information Management System 1.0. This issue affects some unknown processing of the file /admin/modules/student/index.php. This manipulation of the argument studentId causes sql injection. The attack may be initiated remotely. The exploit ha...

itsourcecode Student Information Management System 安全漏洞

itsourcecode Student Information Management System is itsourcecode open source student information management system. A security vulnerability exists in itsourcecode Student Information Management System version 1.0, which is caused by a SQL injection due to incorrect operation of the parameter...

itsourcecode Student Information Management System 安全漏洞

itsourcecode Student Information Management System is an open source student information management system from itsourcecode. A security vulnerability exists in itsourcecode Student Information Management System version 1.0, which is caused by SQL injection due to incorrect manipulation of the...

itsourcecode Student Information Management System 安全漏洞

itsourcecode Student Information Management System is an open source student information management system from itsourcecode. A security vulnerability exists in itsourcecode Student Information Management System version 1.0, which is caused by a SQL injection due to incorrect manipulation of the...

CVE-2025-9792 itsourcecode Apartment Management System e_all_info.php sql injection

A security vulnerability has been detected in itsourcecode Apartment Management System 1.0. This issue affects some unknown processing of the file /edashboard/eallinfo.php. Such manipulation of the argument mid leads to sql injection. The attack can be executed remotely. The exploit has been...

CVE-2025-9767 itsourcecode Sports Management System sporttype.php sql injection

A vulnerability was determined in itsourcecode Sports Management System 1.0. This affects an unknown function of the file /Admin/sporttype.php. Executing manipulation of the argument code can lead to sql injection. The attack can be executed remotely. The exploit has been publicly disclosed and m...

CVE-2025-9766 itsourcecode Sports Management System facilitator.php sql injection

A vulnerability was found in itsourcecode Sports Management System 1.0. The impacted element is an unknown function of the file /Admin/facilitator.php. Performing manipulation of the argument code results in sql injection. Remote exploitation of the attack is possible. The exploit has been made...

CVE-2025-9764

The CVE-2025-9764 issue affects itsourcecode Sports Management System 1.0, specifically the /Admin/resultdetails.php script where manipulating the ID parameter enables SQL injection. The vulnerability is remotely exploitable and is supported by multiple sources (CNVD/CNNVD references and others) ...

CVE-2025-9764 itsourcecode Sports Management System resultdetails.php sql injection

A flaw has been found in itsourcecode Sports Management System 1.0. Impacted is an unknown function of the file /Admin/resultdetails.php. This manipulation of the argument ID causes sql injection. The attack may be initiated remotely. The exploit has been published and may be used...

itsourcecode Sports Management System 安全漏洞

Sports Management System a sports management system. The Sports Management System suffers from a SQL injection vulnerability that stems from a lack of validation of externally entered SQL statements in the parameter code in the file /Admin/facilitator.php. An attacker can exploit this vulnerabili...

itsourcecode Apartment Management System 安全漏洞

Apartment Management System is an apartment management system. Apartment Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in ddlBranch, a parameter of the Setting Handler component in file...

itsourcecode Sports Management System 安全漏洞

Sports Management System a sports management system. The Sports Management System suffers from a SQL injection vulnerability that stems from a lack of validation of externally entered SQL statements in parameter ID in file /Admin/tournamentdetails.php. An attacker can exploit this vulnerability t...

PT-2025-35468

Name of the Vulnerable Software and Affected Versions: itsourcecode Sports Management System version 1.0 Description: A vulnerability exists in itsourcecode Sports Management System 1.0. The manipulation of the code argument in the file /Admin/mode.php can lead to SQL injection. The attack can be...

itsourcecode Sports Management System 安全漏洞

Sports Management System a sports management system. The Sports Management System suffers from a SQL injection vulnerability that originates from a lack of validation of externally entered SQL statements in the parameter code in the file /Admin/sporttype.php. An attacker can exploit this...

itsourcecode Sports Management System 安全漏洞

Sports Management System a sports management system. The Sports Management System suffers from a SQL injection vulnerability that stems from a lack of validation of externally entered SQL statements in the parameter ID of the file /Admin/resultdetails.php. An attacker can exploit this vulnerabili...

CVE-2025-9730 itsourcecode Apartment Management System updateProfile.php sql injection

A vulnerability was found in itsourcecode Apartment Management System 1.0. The affected element is an unknown function of the file /ajax/updateProfile.php. The manipulation of the argument userid results in sql injection. It is possible to launch the attack remotely. The exploit has been made...

CVE-2025-9645

A vulnerability was identified in itsourcecode Apartment Management System 1.0. This affects an unknown part of the file /tdashboard/rallinfo.php. The manipulation of the argument mid leads to sql injection. The attack can be initiated remotely. The exploit is publicly available and might be used...