4 matches found
CVE-2025-4486
creationtimestamp| type| source ---|---|--- 2025-05-09 22:01:56+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lor7jed4m4a2 2025-05-09 22:30:58+00:00| published-proof-of-concept| Telegram/-FSytdz-B3MQuFO8RZfSO4jPAWx-8JuShz-w-b65AWDPvJk...
CVE-2025-4486 itsourcecode Gym Management System ajax.php sql injection
A vulnerability was found in itsourcecode Gym Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /ajax.php?action=deleteplan. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely. The exploit has bee...
CVE-2025-4486
CVE-2025-4486 affects itsourcecode Gym Management System 1.0. The issue is an SQL injection in the endpoint /ajax.php?action=delete_plan caused by manipulation of the ID parameter, with remote feasibility and public disclosure noted. Multiple sources corroborate the vulnerability and classify ris...
CVE-2025-4486 itsourcecode Gym Management System ajax.php sql injection
A vulnerability was found in itsourcecode Gym Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /ajax.php?action=deleteplan. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely. The exploit has bee...