PT-2025-47148

Name of the Vulnerable Software and Affected Versions itsourcecode Online Voting System version 1.0 Description A weakness exists in itsourcecode Online Voting System version 1.0. The issue involves the manipulation of the id/category argument in the file '/index.php?page=categories', potentially...

itsourcecode Web-Based Internet Laboratory SQL注入漏洞

Web-Based Internet Laboratory Management System is a web laboratory software. A SQL injection vulnerability exists in Web-Based Internet Laboratory Management System, which originates from a lack of validation of externally entered SQL statements in the file /settings/controller.php. An attacker...

PT-2025-47201

Name of the Vulnerable Software and Affected Versions itsourcecode Web-Based Internet Laboratory Management System version 1.0 Description A flaw exists in itsourcecode Web-Based Internet Laboratory Management System 1.0 that allows for SQL injection. The issue is located in the file...

PT-2025-47191

Name of the Vulnerable Software and Affected Versions itsourcecode Web-Based Internet Laboratory Management System version 1.0 Description A security issue exists in itsourcecode Web-Based Internet Laboratory Management System version 1.0. The issue involves a SQL injection impacting an unknown...

PT-2025-47208

Name of the Vulnerable Software and Affected Versions itsourcecode Web-Based Internet Laboratory Management System version 1.0 Description A SQL injection issue exists in itsourcecode Web-Based Internet Laboratory Management System version 1.0. The issue is located in an unknown functionality of...

PT-2025-47206

Name of the Vulnerable Software and Affected Versions itsourcecode Web-Based Internet Laboratory Management System version 1.0 Description A flaw exists in itsourcecode Web-Based Internet Laboratory Management System version 1.0 that allows for SQL injection. The issue is located in an unknown...

EUVD-2025-197715

A vulnerability was determined in itsourcecode Inventory Management System 1.0. This affects an unknown function of the file /admin/login.php. Executing manipulation of the argument useremail can lead to sql injection. It is possible to launch the attack remotely. The exploit has been publicly...

CVE-2025-13237

A security flaw has been discovered in itsourcecode Inventory Management System 1.0. Affected is an unknown function of the file /LogSignModal.PHP. The manipulation of the argument UUSERNAME results in sql injection. The attack can be launched remotely. The exploit has been released to the public...

CVE-2025-13237 itsourcecode Inventory Management System LogSignModal.PHP sql injection

A security flaw has been discovered in itsourcecode Inventory Management System 1.0. Affected is an unknown function of the file /LogSignModal.PHP. The manipulation of the argument UUSERNAME results in sql injection. The attack can be launched remotely. The exploit has been released to the public...

CVE-2025-13236 itsourcecode Inventory Management System index.php sql injection

A vulnerability was identified in itsourcecode Inventory Management System 1.0. This impacts an unknown function of the file /admin/products/index.php?view=edit. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The exploit is publicly available and...

CVE-2025-13236

Affected software: itsourcecode Inventory Management System 1.0. Vulnerability: SQL injection arising from improper handling of the ID parameter in the file /admin/products/index.php?view=edit. Where: The vulnerability is triggered via the index.php?view=edit path under the admin/products directo...

CVE-2025-13235

Mode C: This CVE concerns itsourcecode Inventory Management System 1.0. The vulnerability exists in the /admin/login.php file, where manipulating the user_email parameter can trigger SQL injection. It is exploitable remotely and has publicly disclosed exploits. Connected documents corroborate a S...

CVE-2025-13235 itsourcecode Inventory Management System login.php sql injection

A vulnerability was determined in itsourcecode Inventory Management System 1.0. This affects an unknown function of the file /admin/login.php. Executing manipulation of the argument useremail can lead to sql injection. It is possible to launch the attack remotely. The exploit has been publicly...

CVE-2025-13234

A vulnerability was found in itsourcecode Inventory Management System 1.0. The impacted element is an unknown function of the file /index.php?q=product. Performing manipulation of the argument PROID results in sql injection. It is possible to initiate the attack remotely. The exploit has been mad...

CVE-2025-13233

A vulnerability has been found in itsourcecode Inventory Management System 1.0. The affected element is an unknown function of the file /index.php?q=single-item. Such manipulation of the argument ID leads to sql injection. The attack may be performed from remote. The exploit has been disclosed to...

CVE-2025-13234

The CVE-2025-13234 affects itsourcecode Inventory Management System 1.0, with a SQL injection flaw in the PROID parameter of /index.php?q=product. Multiple sources confirm remote exploitation and a publicly released exploit. Remediation is not detailed in the initial document beyond recommending ...

CVE-2025-13234 itsourcecode Inventory Management System index.php sql injection

A vulnerability was found in itsourcecode Inventory Management System 1.0. The impacted element is an unknown function of the file /index.php?q=product. Performing manipulation of the argument PROID results in sql injection. It is possible to initiate the attack remotely. The exploit has been mad...

CVE-2025-13233

CVE-2025-13233 affects itsourcecode Inventory Management System 1.0. The vulnerable element is the file /index.php?q=single-item where manipulation of the ID parameter enables SQL injection. The issue can be exploited remotely and the exploit has been disclosed publicly. Available details indicat...

CVE-2025-13233 itsourcecode Inventory Management System index.php sql injection

A vulnerability has been found in itsourcecode Inventory Management System 1.0. The affected element is an unknown function of the file /index.php?q=single-item. Such manipulation of the argument ID leads to sql injection. The attack may be performed from remote. The exploit has been disclosed to...

CVE-2025-13233 itsourcecode Inventory Management System index.php sql injection

A vulnerability has been found in itsourcecode Inventory Management System 1.0. The affected element is an unknown function of the file /index.php?q=single-item. Such manipulation of the argument ID leads to sql injection. The attack may be performed from remote. The exploit has been disclosed to...