CVE-2025-25878

A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /del.php. The attack can use SQL injection to obtain sensitive data...

CVE-2025-25875

Affected software: ITSourcecode Simple ChatBox (up to v1.0). Vulnerable component: /message.php. Root cause: SQL injection in the file as stated. Impact: Confidentiality and integrity are marked HIGH; availability LOW. Attack vector: Network; required privileges: HIGH; user interaction required. ...

itsourcecode Simple ChatBox 安全漏洞

itsourcecode Simple ChatBox is an open source management system for itsourcecode. A security vulnerability exists in itsourcecode Simple ChatBox version 1.0 and earlier versions. An attacker exploiting the vulnerability can obtain sensitive data...

CVE-2025-25877

The CVE-2025-25877 entry concerns ITSourcecode Simple ChatBox (versions up to 1.0). The vulnerability affects unknown code in the /admin.php file and enables SQL injection to obtain sensitive data . Reported impact indicates potential data exposure with a low base score (CVSS 3.1: 3.8, LOW) and i...

CVE-2025-25876

A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /delete.php. The attack can use SQL injection to obtain sensitive data...

PT-2025-7581 · Itsourcecode · Itsourcecode Simple Chatbox

Name of the Vulnerable Software and Affected Versions: ITSourcecode Simple ChatBox versions up to 1.0 Description: A vulnerability was found in ITSourcecode Simple ChatBox, affecting unknown code of the file /del.php. The attack can use SQL injection to obtain sensitive data. Recommendations: For...

CVE-2025-25878

A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /del.php. The attack can use SQL injection to obtain sensitive data...

itsourcecode Simple ChatBox 安全漏洞

itsourcecode Simple ChatBox is an open source management system for itsourcecode. A security vulnerability exists in itsourcecode Simple ChatBox version 1.0 and earlier versions. An attacker exploiting the vulnerability can obtain sensitive data...

CVE-2025-25876

ITSourcecode Simple ChatBox (≤1.0) is affected by a SQL injection in the /delete.php file. Root cause: improper handling of SQL queries in that file enabling data exfiltration. Impact per cited sources: confidentiality, integrity, and availability are HIGH (CVSS 3.1: 7.2). Mitigation mentioned in...

itsourcecode Simple ChatBox 安全漏洞

itsourcecode Simple ChatBox is an open source management system for itsourcecode. A security vulnerability exists in itsourcecode Simple ChatBox version 1.0 and earlier versions. An attacker exploiting the vulnerability can obtain sensitive data...

CVE-2025-25876

A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /delete.php. The attack can use SQL injection to obtain sensitive data...

CVE-2025-25877

A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /admin.php. The attack can use SQL injection to obtain sensitive data...

itsourcecode Simple ChatBox 安全漏洞

itsourcecode Simple ChatBox is an open source management system for itsourcecode. A security vulnerability exists in itsourcecode Simple ChatBox version 1.0 and earlier versions. An attacker exploiting the vulnerability can obtain sensitive data...

CVE-2025-25877

A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /admin.php. The attack can use SQL injection to obtain sensitive data...

CVE-2025-25875

A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /message.php. The attack can use SQL injection to obtain sensitive data...

CVE-2025-25878

The CVE-2025-25878 entry concerns ITSourcecode Simple ChatBox (up to version 1.0). The vulnerability is tied to the /del.php file, where SQL injection may allow an attacker to obtain sensitive data. The publicly documented impact is limited to data disclosure with a CVSSv3.1 base score of 3.8 (LO...

CVE-2024-7444

A vulnerability classified as critical was found in itsourcecode Ticket Reservation System 1.0. Affected by this vulnerability is an unknown functionality of the file login.php of the component Login Page. The manipulation of the argument username leads to sql injection. The attack can be launche...

CVE-2024-7839

A vulnerability classified as critical has been found in itsourcecode Billing System 1.0. This affects an unknown part of the file addbill.php. The manipulation of the argument ownersid leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

CVE-2024-7913

A vulnerability was found in itsourcecode Billing System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /addclient1.php. The manipulation of the argument lname/fname/mi/address/contact/meterReader leads to sql injection. The attack may be initiated...

CVE-2024-7449

A vulnerability, which was classified as critical, was found in itsourcecode Placement Management System 1.0. Affected is an unknown function of the file login.php. The manipulation of the argument email leads to sql injection. It is possible to launch the attack remotely. The exploit has been...