2 matches found
CVE-2025-4465 itsourcecode Gym Management System ajax.php sql injection
A vulnerability was found in itsourcecode Gym Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /ajax.php?action=saveschedule. The manipulation of the argument memberid leads to sql injection. The attack may be launched remotely. Th...
CVE-2025-4465
CVE-2025-4465 affects itsourcecode Gym Management System 1.0. The vulnerability is a SQL injection in the endpoint at /ajax.php?action=save_schedule, triggered by manipulating the member_id parameter. Several connected sources confirm remote exploitation is possible and that the exploit has been ...