CVE-2025-13485

A security flaw has been discovered in itsourcecode Online File Management System 1.0. This issue affects some unknown processing of the file /ajax.php?action=login. The manipulation of the argument Username results in sql injection. The attack may be launched remotely. The exploit has been...

CVE-2025-13485 itsourcecode Online File Management System ajax.php sql injection

A security flaw has been discovered in itsourcecode Online File Management System 1.0. This issue affects some unknown processing of the file /ajax.php?action=login. The manipulation of the argument Username results in sql injection. The attack may be launched remotely. The exploit has been...

EUVD-2025-198366

A security flaw has been discovered in itsourcecode Online File Management System 1.0. This issue affects some unknown processing of the file /ajax.php?action=login. The manipulation of the argument Username results in sql injection. The attack may be launched remotely. The exploit has been...

CVE-2025-13485 itsourcecode Online File Management System ajax.php sql injection

A security flaw has been discovered in itsourcecode Online File Management System 1.0. This issue affects some unknown processing of the file /ajax.php?action=login. The manipulation of the argument Username results in sql injection. The attack may be launched remotely. The exploit has been...

CVE-2025-13485

CVE-2025-13485 affects itsourcecode Online File Management System 1.0. The vulnerability is a SQL injection caused by improper handling of the Username argument in /ajax.php?action=login, which can be exploited remotely. Multiple connected sources confirm exploitation has been released publicly. ...

itsourcecode Online File Management System SQL注入漏洞

itsourcecode Online File Management System is a itsourcecode open source online file management system. A SQL injection vulnerability exists in itsourcecode Online File Management System version 1.0, which originates from a misuse of the parameter Username in file/ajax.php?action=login, which cou...

PT-2025-47647

Name of the Vulnerable Software and Affected Versions itsourcecode Online File Management System version 1.0 Description A security flaw exists in itsourcecode Online File Management System version 1.0. The issue involves SQL injection due to the manipulation of the Username argument in the...

CVE-2025-13421

A security vulnerability has been detected in itsourcecode Human Resource Management System 1.0. Impacted is an unknown function of the file /src/store/NoticeStore.php. Such manipulation of the argument noticeDesc leads to sql injection. The attack can be launched remotely. The exploit has been...

CVE-2025-13421

A security vulnerability has been detected in itsourcecode Human Resource Management System 1.0. Impacted is an unknown function of the file /src/store/NoticeStore.php. Such manipulation of the argument noticeDesc leads to sql injection. The attack can be launched remotely. The exploit has been...

CVE-2025-13420 itsourcecode Human Resource Management System EventStore.php sql injection

A weakness has been identified in itsourcecode Human Resource Management System 1.0. This issue affects some unknown processing of the file /src/store/EventStore.php. This manipulation of the argument eventSubject causes sql injection. The attack can be initiated remotely. The exploit has been ma...

itsourcecode Human Resource Management System SQL注入漏洞

itsourcecode Human Resource Management System is itsourcecode open source human resource management system. A SQL injection vulnerability exists in itsourcecode Human Resource Management System version 1.0, which originates from the incorrect operation of the parameter noticeDesc in the file...

itsourcecode Human Resource Management System SQL注入漏洞

itsourcecode Human Resource Management System is itsourcecode open source human resource management system. A SQL injection vulnerability exists in itsourcecode Human Resource Management System version 1.0, which stems from a misuse of the eventSubject parameter in the file...

CVE-2025-13301

A vulnerability was found in itsourcecode Web-Based Internet Laboratory Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /subject/controller.php. The manipulation results in sql injection. It is possible to launch the attack remotely. The exploit has...

CVE-2025-13287

A weakness has been identified in itsourcecode Online Voting System 1.0. This affects an unknown function of the file /index.php?page=categories. Executing manipulation of the argument id/category can lead to sql injection. The attack can be executed remotely. The exploit has been made available ...

CVE-2025-13257

A security vulnerability has been detected in itsourcecode Inventory Management System 1.0. The affected element is an unknown function of the file /admin/user/index.php?view=edit. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The exploit has be...

CVE-2025-13325 itsourcecode Student Information System enrollment_edit1.php sql injection

A vulnerability was determined in itsourcecode Student Information System 1.0. The affected element is an unknown function of the file /enrollmentedit1.php. Executing manipulation of the argument enid can lead to sql injection. The attack may be performed from remote. The exploit has been publicl...

EUVD-2025-197888

A vulnerability was determined in itsourcecode Student Information System 1.0. The affected element is an unknown function of the file /enrollmentedit1.php. Executing manipulation of the argument enid can lead to sql injection. The attack may be performed from remote. The exploit has been publicl...

CVE-2025-13325

The CVE-2025-13325 entry concerns itsourcecode Student Information System 1.0. The vulnerability is in the file /enrollment_edit1.php, where manipulation of the en_id parameter enables SQL injection. The attack can be performed remotely, and public exploit details exist. Remediation or affected v...

itsourcecode Student Information System SQL注入漏洞

itsourcecode Student Information System is an open source student information system by itsourcecode. The SQL injection vulnerability exists in itsourcecode Student Information System version 1.0, which originates from incorrect manipulation of the parameter enid in the file /enrollmentedit1.php,...

CVE-2025-13300

A vulnerability has been found in itsourcecode Web-Based Internet Laboratory Management System 1.0. Affected is an unknown function of the file /settings/controller.php. The manipulation leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the...