EUVD-2026-33636

A security flaw has been discovered in itsourcecode Content Management System 1.0. This issue affects some unknown processing of the file /admin/updatessimg.php. The manipulation of the argument topicid results in sql injection. The attack can be executed remotely. The exploit has been released t...

CVE-2026-10256 itsourcecode Content Management System save_comment.php sql injection

A vulnerability was identified in itsourcecode Content Management System 1.0. This vulnerability affects unknown code of the file /savecomment.php. The manipulation of the argument Name leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available and...

itsourcecode Content Management System SQL注入漏洞

itsourcecode Content Management System is an open-source content management system developed by itsourcecode. Version 1.0 of the itsourcecode Content Management System has a SQL injection vulnerability. This vulnerability arises from incorrect handling of the topicid parameter in the file...

CVE-2025-4311 itsourcecode Content Management System update_main_topic_img.php sql injection

A vulnerability classified as critical was found in itsourcecode Content Management System 1.0. This vulnerability affects unknown code of the file /admin/updatemaintopicimg.php?topicid=529. The manipulation of the argument stopicid leads to sql injection. The attack can be initiated remotely. Th...

CVE-2025-4311

CVE-2025-4311 affects itsourcecode Content Management System 1.0. The vulnerability resides in the /admin/update_main_topic_img.php?topic_id=529 endpoint, where manipulation of the topic_id parameter enables SQL injection. Exploitation is possible remotely, and public disclosure exists. Multiple ...

CVE-2025-4310 itsourcecode Content Management System add_topic.php unrestricted upload

A vulnerability classified as critical has been found in itsourcecode Content Management System 1.0. This affects an unknown part of the file /admin/addtopic.php?category=BBS. The manipulation of the argument Cover Image leads to unrestricted upload. It is possible to initiate the attack remotely...

CVE-2025-4300

CVE-2025-4300 affects itsourcecode Content Management System 1.0. The vulnerability is a SQL injection in an unknown function within /search_list.php triggered by manipulating the Search parameter. It is exploitable remotely and multiple sources state the exploit has been publicly disclosed. Tech...

PT-2025-19829 · Unknown · Itsourcecode Content Management System

Name of the Vulnerable Software and Affected Versions: itsourcecode Content Management System version 1.0 Description: A critical issue has been discovered, affecting a part of the /admin/add topic.php?category=BBS file. The manipulation of the Cover Image argument leads to unrestricted upload...

PT-2025-19811 · Unknown · Isourcecode Content Management System

Name of the Vulnerable Software and Affected Versions: itsourcecode Content Management System version 1.0 Description: A critical vulnerability has been found in the itsourcecode Content Management System. The issue affects an unknown function of the file /search list.php. The manipulation of the...