itsourcecode Online Pet Shop Management System SQL注入漏洞

itsourcecode Online Pet Shop Management System is itsourcecode open source online pet store management system. SQL injection vulnerability exists in itsourcecode Online Pet Shop Management System version 1.0, the vulnerability stems from incorrect manipulation of the parameter Name in the file...

PT-2025-51110

Name of the Vulnerable Software and Affected Versions itsourcecode Online Pet Shop Management System version 1.0 Description A flaw exists in itsourcecode Online Pet Shop Management System 1.0, specifically within the file /pet1/available.php. Manipulation of the Name argument can lead to SQL...

CVE-2025-14584

A vulnerability has been found in itsourcecode COVID Tracking System 1.0. Affected is an unknown function of the file /admin/login.php of the component Admin Login. The manipulation of the argument Username leads to sql injection. The attack may be initiated remotely. The exploit has been disclos...

CVE-2025-14585

CVE-2025-14585 affects itsourcecode COVID Tracking System 1.0. The vulnerability is in the unknown functionality at /admin/?page=zone where manipulating the ID parameter yields SQL injection. Exploitation can be performed remotely, and public exploits exist. Supported sources (NVD, Red Hat, CIRCL...

CVE-2025-14584 itsourcecode COVID Tracking System Admin Login login.php sql injection

A vulnerability has been found in itsourcecode COVID Tracking System 1.0. Affected is an unknown function of the file /admin/login.php of the component Admin Login. The manipulation of the argument Username leads to sql injection. The attack may be initiated remotely. The exploit has been disclos...

CVE-2025-14584

The CVE-2025-14584 entry concerns itsourcecode COVID Tracking System 1.0, specifically the Admin Login component (/admin/login.php). Affected is an unknown function where the Username parameter is manipulated to trigger a SQL injection. The vulnerability can be exploited remotely and public explo...

CVE-2025-14578 itsourcecode Student Management System update_account.php sql injection

A weakness has been identified in itsourcecode Student Management System 1.0. The affected element is an unknown function of the file /updateaccount.php. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been made available ...

CVE-2025-14578

CVE-2025-14578 affects itsourcecode Student Management System 1.0. The vulnerability is a SQL injection in an unknown function of the file /update_account.php caused by manipulation of the ID parameter, exploitable remotely without authentication (attack vector: NETWORK). Multiple connected sourc...

CVE-2025-14578 itsourcecode Student Management System update_account.php sql injection

A weakness has been identified in itsourcecode Student Management System 1.0. The affected element is an unknown function of the file /updateaccount.php. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been made available ...

itsourcecode Student Management System SQL注入漏洞

itsourcecode Student Management System is an open source student management system from itsourcecode. A SQL injection vulnerability exists in version 1.0 of itsourcecode Student Management System, which stems from incorrect manipulation of the parameter ID in the file /updateaccount.php, which...

itsourcecode COVID Tracking System SQL注入漏洞

itsourcecode COVID Tracking System is a new coronavirus tracking system open-sourced by itsourcecode. An SQL injection vulnerability exists in version 1.0 of itsourcecode COVID Tracking System, which stems from a misuse of the parameter ID in the file /admin/?page=zone, which could lead to an SQL...

CVE-2025-14337 itsourcecode Student Management System new_grade.php sql injection

A vulnerability was determined in itsourcecode Student Management System 1.0. This affects an unknown part of the file /newgrade.php. This manipulation of the argument grade causes sql injection. The attack can be initiated remotely. The exploit has been publicly disclosed and may be utilized...

CVE-2025-14337 itsourcecode Student Management System new_grade.php sql injection

A vulnerability was determined in itsourcecode Student Management System 1.0. This affects an unknown part of the file /newgrade.php. This manipulation of the argument grade causes sql injection. The attack can be initiated remotely. The exploit has been publicly disclosed and may be utilized...

CVE-2025-14337

The connected documents provide concrete details for CVE-2025-14337: itsourcecode Student Management System 1.0 is affected, specifically the /new_grade.php file where manipulation of the grade parameter leads to SQL injection. The vulnerability can be exploited remotely, and exploitation is publ...

CVE-2025-14335

A vulnerability has been found in itsourcecode Student Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /newschoolyear.php. The manipulation of the argument sy leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...

CVE-2025-14336

A vulnerability was found in itsourcecode Student Management System 1.0. Affected by this issue is some unknown functionality of the file /promote.php. The manipulation of the argument sy results in sql injection. It is possible to launch the attack remotely. The exploit has been made public and...

CVE-2025-14335

A vulnerability has been found in itsourcecode Student Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /newschoolyear.php. The manipulation of the argument sy leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...

CVE-2025-14334

A flaw has been found in itsourcecode Student Management System 1.0. Affected is an unknown function of the file /newadviser.php. Executing manipulation of the argument Name can lead to sql injection. The attack may be performed from remote. The exploit has been published and may be used...

CVE-2025-14336

CVE-2025-14336 affects itsourcecode Student Management System 1.0. The vulnerability lies in the /promote.php file where manipulation of the parameter (sy) leads to SQL injection. It is remotely exploitable and, per connected sources, the exploit has been made public. Potential impact is SQL inje...

CVE-2025-14336 itsourcecode Student Management System promote.php sql injection

A vulnerability was found in itsourcecode Student Management System 1.0. Affected by this issue is some unknown functionality of the file /promote.php. The manipulation of the argument sy results in sql injection. It is possible to launch the attack remotely. The exploit has been made public and...