611 matches found
CVE-2025-14258 itsourcecode Student Management System newsubject.php sql injection
A vulnerability has been found in itsourcecode Student Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /newsubject.php. The manipulation of the argument sub leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed t...
EUVD-2025-201800
A vulnerability has been found in itsourcecode Student Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /newsubject.php. The manipulation of the argument sub leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed t...
CVE-2025-14258
Affected software: itsourcecode Student Management System 1.0. Vulnerability details: SQL injection in the /newsubject.php file via the sub parameter, caused by improper handling of user input. Exploitation can be remote; multiple sources report public disclosure of the exploit. Impact: high pote...
CVE-2025-14256
A vulnerability was detected in itsourcecode Student Management System 1.0. This impacts an unknown function of the file /newcurriculm.php. Performing manipulation of the argument ID results in sql injection. The attack can be initiated remotely. The exploit is now public and may be used...
CVE-2025-14257
A flaw has been found in itsourcecode Student Management System 1.0. Affected is an unknown function of the file /newrecord.php. Executing manipulation of the argument ID can lead to sql injection. The attack can be launched remotely. The exploit has been published and may be used...
CVE-2025-14256
A vulnerability was detected in itsourcecode Student Management System 1.0. This impacts an unknown function of the file /newcurriculm.php. Performing manipulation of the argument ID results in sql injection. The attack can be initiated remotely. The exploit is now public and may be used...
CVE-2025-14257
The CVE-2025-14257 issue affects itsourcecode Student Management System 1.0, with the vulnerable component/file being /newrecord.php and the parameter ID. The underlying flaw is a SQL injection caused by manipulating the ID argument, enabling remote exploitation. Exploitation is published and can...
CVE-2025-14256
Summary: CVE-2025-14256 affects itsourcecode Stock Management System 1.0 (Student Management System) via SQL injection in the file /newcurriculm.php, triggered by manipulating the ID parameter. The issue arises from lack of validation of externally entered SQL statements, enabling remote executio...
CVE-2025-14256 itsourcecode Student Management System newcurriculm.php sql injection
A vulnerability was detected in itsourcecode Student Management System 1.0. This impacts an unknown function of the file /newcurriculm.php. Performing manipulation of the argument ID results in sql injection. The attack can be initiated remotely. The exploit is now public and may be used...
CVE-2025-14226
A vulnerability was identified in itsourcecode Student Management System 1.0. This vulnerability affects unknown code of the file /edituser.php. The manipulation of the argument fname leads to sql injection. The attack is possible to be carried out remotely. The exploit is publicly available and...
CVE-2025-14226 itsourcecode Student Management System edit_user.php sql injection
A vulnerability was identified in itsourcecode Student Management System 1.0. This vulnerability affects unknown code of the file /edituser.php. The manipulation of the argument fname leads to sql injection. The attack is possible to be carried out remotely. The exploit is publicly available and...
itsourcecode Student Management System SQL注入漏洞
itsourcecode Student Management System is an open source student management system from itsourcecode. A SQL injection vulnerability exists in version 1.0 of itsourcecode Student Management System, which stems from an incorrect manipulation of the parameter sub in the file /newsubject.php, which...
itsourcecode Student Management System SQL注入漏洞
Student Management System is a student management system. Student Management System suffers from a SQL injection vulnerability that originates from the lack of validation of an externally-entered SQL statement in the parameter fname in the file /edituser.php. The vulnerability can be exploited to...
itsourcecode Student Management System 安全漏洞
itsourcecode Student Management System is an open source student management system from itsourcecode. A security vulnerability exists in version 1.0 of itsourcecode Student Management System, which stems from an incorrect manipulation of the parameter ID in the file /newrecord.php, which could le...
PT-2025-49539
Name of the Vulnerable Software and Affected Versions itsourcecode Student Management System version 1.0 Description A security issue exists in itsourcecode Student Management System 1.0. The issue affects code within the /edit user.php file. Manipulation of the fname argument can lead to a SQL...
PT-2025-49572
Name of the Vulnerable Software and Affected Versions itsourcecode Student Management System version 1.0 Description A flaw exists in itsourcecode Student Management System 1.0, specifically within the file /newrecord.php. Manipulation of the ID argument can lead to SQL injection. The attack can ...
itsourcecode Student Management System SQL注入漏洞
Student Management System is a student management system. Student Management System suffers from a SQL injection vulnerability that originates from a lack of validation of externally-entered SQL statements in the parameter ID of the file /newcurriculm.php. An attacker can exploit this vulnerabili...
PT-2025-49578
Name of the Vulnerable Software and Affected Versions itsourcecode Student Management System version 1.0 Description A flaw exists in itsourcecode Student Management System 1.0, specifically within the file /newsubject.php. The sub argument is susceptible to SQL injection, allowing for remote...
PT-2025-49568
A vulnerability was detected in itsourcecode Student Management System 1.0. This impacts an unknown function of the file /newcurriculm.php. Performing manipulation of the argument ID results in sql injection. The attack can be initiated remotely. The exploit is now public and may be used...
EUVD-2021-20077
Malware in sbrugna...