5 matches found
CVE-2025-4466
creationtimestamp| type| source ---|---|--- 2025-05-09 06:25:39+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/15677 2025-05-09 06:46:21+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3loptd7tv2pc2 2025-05-09...
CVE-2025-4466
A vulnerability was found in itsourcecode Gym Management System 1.0. It has been classified as critical. This affects an unknown part of the file /ajax.php?action=savepayment. The manipulation of the argument registrationid leads to sql injection. It is possible to initiate the attack remotely. T...
CVE-2025-4466 itsourcecode Gym Management System ajax.php sql injection
A vulnerability was found in itsourcecode Gym Management System 1.0. It has been classified as critical. This affects an unknown part of the file /ajax.php?action=savepayment. The manipulation of the argument registrationid leads to sql injection. It is possible to initiate the attack remotely. T...
CVE-2025-4466 itsourcecode Gym Management System ajax.php sql injection
A vulnerability was found in itsourcecode Gym Management System 1.0. It has been classified as critical. This affects an unknown part of the file /ajax.php?action=savepayment. The manipulation of the argument registrationid leads to sql injection. It is possible to initiate the attack remotely. T...
CVE-2025-4466
The CVE-2025-4466 entry concerns the itsourcecode Gym Management System 1.0. Affected component: /ajax.php?action=save_payment; vulnerable parameter: registration_id. Root cause: SQL injection resulting from improper handling of the registration_id argument. Impact: high risk of confidentiality, ...