CVE-2025-10631 itsourcecode Online Petshop Management System Available Products addcnp.php cross site scripting

A vulnerability was identified in itsourcecode Online Petshop Management System 1.0. Impacted is an unknown function of the file addcnp.php of the component Available Products Page. The manipulation of the argument name/description leads to cross site scripting. It is possible to initiate the...

CVE-2025-10631

Affects itsourcecode Online Petshop Management System 1.0, specifically the Available Products Page component. The vulnerability lies in addcnp.php where manipulation of the name/description argument enables cross-site scripting. This can be exploited remotely, and a PoC/exploit is publicly avail...

itsourcecode Online Petshop Management System 安全漏洞

itsourcecode Online Petshop Management System is itsourcecode open source an online pet store management system. A security vulnerability exists in version 1.0 of itsourcecode Online Petshop Management System, which stems from an incorrect manipulation of the name or address parameter in the file...

PT-2025-38411

Name of the Vulnerable Software and Affected Versions itsourcecode Student Information Management System version 1.0 Description A vulnerability exists in itsourcecode Student Information Management System version 1.0. The issue is a SQL injection affecting an unknown function within the...

itsourcecode Online Discussion Forum SQL注入漏洞

itsourcecode Online Discussion Forum is an online forum of itsourcecode open source. A SQL injection vulnerability exists in version 1.0 of itsourcecode Online Discussion Forum, which stems from incorrect manipulation of the parameter ID in the file /members/composemsg.php, which could lead to a...

PT-2025-38401

Name of the Vulnerable Software and Affected Versions itsourcecode E-Logbook with Health Monitoring System for COVID-19 version 1.0 Description A flaw exists in itsourcecode E-Logbook with Health Monitoring System for COVID-19, potentially allowing for SQL injection. The issue is related to the...

PT-2025-38381

Name of the Vulnerable Software and Affected Versions itsourcecode Online Discussion Forum version 1.0 Description A security issue exists in itsourcecode Online Discussion Forum. Manipulation of the ID argument in the /members/compose msg admin.php file can lead to SQL injection. The attack can ...

itsourcecode Online Discussion Forum SQL注入漏洞

itsourcecode Online Discussion Forum is an online forum of itsourcecode open source. A SQL injection vulnerability exists in itsourcecode Online Discussion Forum version 1.0, which stems from incorrect manipulation of the parameter ID in the file /members/composemsgadmin.php, which could lead to ...

itsourcecode E-Logbook with Health Monitoring System for COVID-19 SQL注入漏洞

itsourcecode E-Logbook with Health Monitoring System for COVID-19 is an electronic logging system for the New Crown Pneumonia Health Monitoring System for COVID-19 open source by itsourcecode. An SQL injection vulnerability exists in itsourcecode E-Logbook with Health Monitoring System for COVID-...

PT-2025-38293

Name of the Vulnerable Software and Affected Versions itsourcecode Online Petshop Management System version 1.0 Description A security flaw exists in itsourcecode Online Petshop Management System version 1.0. The issue is a cross-site scripting XSS vulnerability within the Admin Dashboard...

CVE-2025-10620

The CVE-2025-10620 entry concerns itsourcecode Online Clinic Management System 1.0. It identifies an SQL injection vulnerability in unknown code within the file /editp2.php, caused by manipulating parameters id, firstname, lastname, type, age, or address. The vulnerability can be exploited remote...

CVE-2025-10620 itsourcecode Online Clinic Management System editp2.php sql injection

A flaw has been found in itsourcecode Online Clinic Management System 1.0. This vulnerability affects unknown code of the file /editp2.php. Executing manipulation of the argument id/firstname/lastname/type/age/address can lead to sql injection. The attack can be executed remotely. The exploit has...

CVE-2025-10620 itsourcecode Online Clinic Management System editp2.php sql injection

A flaw has been found in itsourcecode Online Clinic Management System 1.0. This vulnerability affects unknown code of the file /editp2.php. Executing manipulation of the argument id/firstname/lastname/type/age/address can lead to sql injection. The attack can be executed remotely. The exploit has...

CVE-2025-10618

A security vulnerability has been detected in itsourcecode Online Clinic Management System 1.0. Affected by this issue is some unknown functionality of the file transact.php. Such manipulation of the argument firstname leads to sql injection. The attack may be launched remotely. The exploit has...

CVE-2025-10616

A security flaw has been discovered in itsourcecode E-Commerce Website 1.0. Affected is an unknown function of the file /admin/users.php. The manipulation results in unrestricted upload. The attack can be launched remotely. The exploit has been released to the public and may be exploited...

CVE-2025-10618 itsourcecode Online Clinic Management System transact.php sql injection

A security vulnerability has been detected in itsourcecode Online Clinic Management System 1.0. Affected by this issue is some unknown functionality of the file transact.php. Such manipulation of the argument firstname leads to sql injection. The attack may be launched remotely. The exploit has...

CVE-2025-10618 itsourcecode Online Clinic Management System transact.php sql injection

A security vulnerability has been detected in itsourcecode Online Clinic Management System 1.0. Affected by this issue is some unknown functionality of the file transact.php. Such manipulation of the argument firstname leads to sql injection. The attack may be launched remotely. The exploit has...

CVE-2025-10616 itsourcecode E-Commerce Website users.php unrestricted upload

A security flaw has been discovered in itsourcecode E-Commerce Website 1.0. Affected is an unknown function of the file /admin/users.php. The manipulation results in unrestricted upload. The attack can be launched remotely. The exploit has been released to the public and may be exploited...

CVE-2025-10616 itsourcecode E-Commerce Website users.php unrestricted upload

A security flaw has been discovered in itsourcecode E-Commerce Website 1.0. Affected is an unknown function of the file /admin/users.php. The manipulation results in unrestricted upload. The attack can be launched remotely. The exploit has been released to the public and may be exploited...

CVE-2025-10616

The CVE-2025-10616 entry concerns itsourcecode E-Commerce Website 1.0. The vulnerable component is the file /admin/users.php where an unspecified manipulation yields an unrestricted upload. The vulnerability can be exploited remotely and the exploit has been released publicly. Other details in co...