2155 matches found
PT-2026-21426
A vulnerability was found in itsourcecode Student Management System 1.0. The impacted element is an unknown function of the file /add student/ of the component Add Student Module. The manipulation results in cross site scripting. It is possible to launch the attack remotely. The exploit has been...
itsourcecode Agri-Trading Online Shopping System SQL注入漏洞
itsourcecode Agri-Trading Online Shopping System is an open-source online shopping system developed by itsourcecode. Version 1.0 of the itsourcecode Agri-Trading Online Shopping System has a SQL injection vulnerability. This vulnerability arises from the handling of the Product parameter in the...
itsourcecode Vehicle Management System SQL注入漏洞
itsourcecode Vehicle Management System is an open-source vehicle management system developed by itsourcecode. Version 1.0 of the itsourcecode Vehicle Management System has a SQL injection vulnerability. This vulnerability arises from the handling of parameter IDs in the /billaction.php file, whic...
CVE-2026-2689
A vulnerability was detected in itsourcecode Event Management System 1.0. Affected is an unknown function of the file /admin/managebooking.php. The manipulation of the argument ID results in sql injection. The attack may be performed from remote. The exploit is now public and may be used...
CVE-2026-2690
A flaw has been found in itsourcecode Event Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/ajax.php?action=login of the component Admin Login. This manipulation of the argument Username causes sql injection. It is possible to initiate the atta...
CVE-2026-2691
A vulnerability has been found in itsourcecode Event Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/manageregister.php. Such manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2026-2689
A vulnerability was detected in itsourcecode Event Management System 1.0. Affected is an unknown function of the file /admin/managebooking.php. The manipulation of the argument ID results in sql injection. The attack may be performed from remote. The exploit is now public and may be used...
CVE-2026-2691
A vulnerability has been found in itsourcecode Event Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/manageregister.php. Such manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2026-2691 itsourcecode Event Management System manage_register.php sql injection
A vulnerability has been found in itsourcecode Event Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/manageregister.php. Such manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2026-2691 itsourcecode Event Management System manage_register.php sql injection
A vulnerability has been found in itsourcecode Event Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/manageregister.php. Such manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2026-2691
CVE-2026-2691 affects itsourcecode Event Management System 1.0. The vulnerability is in the file /admin/manage_register.php (and related manage_register.php references) where manipulation of the ID argument leads to SQL injection. It is described as exploitable remotely with a publicly disclosed ...
CVE-2026-2690 itsourcecode Event Management System Admin Login ajax.php sql injection
A flaw has been found in itsourcecode Event Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/ajax.php?action=login of the component Admin Login. This manipulation of the argument Username causes sql injection. It is possible to initiate the atta...
CVE-2026-2690 itsourcecode Event Management System Admin Login ajax.php sql injection
A flaw has been found in itsourcecode Event Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/ajax.php?action=login of the component Admin Login. This manipulation of the argument Username causes sql injection. It is possible to initiate the atta...
CVE-2026-2690
The affected product is itsourcecode Event Management System 1.0. The vulnerability lies in the Admin Login function, specifically /admin/ajax.php?action=login, where manipulation of the Username parameter triggers SQL injection. Exploitation is possible remotely, and an exploit has been publishe...
CVE-2026-2689 itsourcecode Event Management System manage_booking.php sql injection
A vulnerability was detected in itsourcecode Event Management System 1.0. Affected is an unknown function of the file /admin/managebooking.php. The manipulation of the argument ID results in sql injection. The attack may be performed from remote. The exploit is now public and may be used...
CVE-2026-2689
CVE-2026-2689 affects itsourcecode Event Management System 1.0. A vulnerability in the /admin/manage_booking.php file allows manipulation of the ID parameter to trigger SQL injection. Exploitation is remote-capable and publicly available, indicating practical risk for affected deployments. Multip...
CVE-2026-2689 itsourcecode Event Management System manage_booking.php sql injection
A vulnerability was detected in itsourcecode Event Management System 1.0. Affected is an unknown function of the file /admin/managebooking.php. The manipulation of the argument ID results in sql injection. The attack may be performed from remote. The exploit is now public and may be used...
PT-2026-20570
Name of the Vulnerable Software and Affected Versions itsourcecode Event Management System version 1.0 Description A SQL injection issue exists in itsourcecode Event Management System version 1.0. The issue is located in the /admin/manage register.php file. Manipulation of the ID argument can lea...
itsourcecode Event Management System SQL注入漏洞
itsourcecode Event Management System is an open-source event management system developed by itsourcecode. Version 1.0 of the itsourcecode Event Management System has a SQL injection vulnerability. This vulnerability arises from incorrect handling of the parameter “Username” in the file...
PT-2026-20561
Name of the Vulnerable Software and Affected Versions itsourcecode Event Management System version 1.0 Description A SQL injection issue exists in itsourcecode Event Management System version 1.0. The issue is located in the /admin/manage booking.php file, within an unknown function. Manipulation...