CVE-2025-10068

The CVE-2025-10068 entry concerns itsourcecode Online Discussion Forum 1.0. A SQL injection flaw exists in the file /admin/admin_forum/add_views.php triggered by manipulating the ID argument, enabling remote exploitation. Exploits have been published and may be used. Some connected sources (PT-20...

CVE-2025-10067

A vulnerability was detected in itsourcecode POS Point of Sale System 1.0. The impacted element is an unknown function of the file /inventory/main/vendors/datatables/unittesting/templates/emptytable.php. Performing manipulation of the argument scripts results in cross site scripting. It is possib...

CVE-2025-10067

A vulnerability was detected in itsourcecode POS Point of Sale System 1.0. The impacted element is an unknown function of the file /inventory/main/vendors/datatables/unittesting/templates/emptytable.php. Performing manipulation of the argument scripts results in cross site scripting. It is possib...

CVE-2025-10067 itsourcecode POS Point of Sale System empty_table.php cross site scripting

A vulnerability was detected in itsourcecode POS Point of Sale System 1.0. The impacted element is an unknown function of the file /inventory/main/vendors/datatables/unittesting/templates/emptytable.php. Performing manipulation of the argument scripts results in cross site scripting. It is possib...

CVE-2025-10067

CVE-2025-10067 affects itsourcecode POS Point of Sale System 1.0. The vulnerability exists in the file /inventory/main/vendors/datatables/unit_testing/templates/empty_table.php where manipulating the scripts argument leads to cross-site scripting. The issue can be exploited remotely and, per mult...

CVE-2025-10064

A security flaw has been discovered in itsourcecode POS Point of Sale System 1.0. This issue affects some unknown processing of the file /inventory/main/vendors/datatables/unittesting/templates/domdatatwoheaders.php. The manipulation of the argument scripts results in cross site scripting. The...

CVE-2025-10066 itsourcecode POS Point of Sale System dymanic_table.php cross site scripting

A security vulnerability has been detected in itsourcecode POS Point of Sale System 1.0. The affected element is an unknown function of the file /inventory/main/vendors/datatables/unittesting/templates/dymanictable.php. Such manipulation of the argument scripts leads to cross site scripting. The...

CVE-2025-10066 itsourcecode POS Point of Sale System dymanic_table.php cross site scripting

A security vulnerability has been detected in itsourcecode POS Point of Sale System 1.0. The affected element is an unknown function of the file /inventory/main/vendors/datatables/unittesting/templates/dymanictable.php. Such manipulation of the argument scripts leads to cross site scripting. The...

CVE-2025-10065 itsourcecode POS Point of Sale System dom_data_th.php cross site scripting

A weakness has been identified in itsourcecode POS Point of Sale System 1.0. Impacted is an unknown function of the file /inventory/main/vendors/datatables/unittesting/templates/domdatath.php. This manipulation of the argument scripts causes cross site scripting. The attack is possible to be...

CVE-2025-10065 itsourcecode POS Point of Sale System dom_data_th.php cross site scripting

A weakness has been identified in itsourcecode POS Point of Sale System 1.0. Impacted is an unknown function of the file /inventory/main/vendors/datatables/unittesting/templates/domdatath.php. This manipulation of the argument scripts causes cross site scripting. The attack is possible to be...

CVE-2025-10065

CVE-2025-10065 affects itsourcecode POS Point of Sale System 1.0. The vulnerability is a cross-site scripting flaw in the scripts parameter of /inventory/main/vendors/datatables/unit_testing/templates/dom_data_th.php, caused by improper input handling. It can be exploited remotely and has been pu...

CVE-2025-10064 itsourcecode POS Point of Sale System dom_data_two_headers.php cross site scripting

A security flaw has been discovered in itsourcecode POS Point of Sale System 1.0. This issue affects some unknown processing of the file /inventory/main/vendors/datatables/unittesting/templates/domdatatwoheaders.php. The manipulation of the argument scripts results in cross site scripting. The...

CVE-2025-10064

Summary: CVE-2025-10064 affects itsourcecode POS Point of Sale System 1.0. The vulnerability is a cross-site scripting flaw in the handling of the scripts parameter within the file /inventory/main/vendors/datatables/unit_testing/templates/dom_data_two_headers.php. It can be exploited remotely and...

itsourcecode POS Point of Sale System 代码注入漏洞

POS Point of Sale System is a pos point of sale system. POS Point of Sale System suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameter scripts in the file...

itsourcecode POS Point of Sale System 代码注入漏洞

POS Point of Sale System is a pos point of sale system. POS Point of Sale System suffers from a cross-site scripting vulnerability that originates from the lack of effective filtering and escaping of user-supplied data in the parameter scripts in the file...

itsourcecode Online Discussion Forum SQL注入漏洞

itsourcecode Online Discussion Forum is an online forum of itsourcecode open source. A SQL injection vulnerability exists in itsourcecode Online Discussion Forum version 1.0, which originates from a SQL injection attack due to a misuse of the parameter ID in the file /admin/adminforum/addviews.ph...

PT-2025-36408

Name of the Vulnerable Software and Affected Versions: itsourcecode Online Discussion Forum version 1.0 Description: A SQL injection issue exists in itsourcecode Online Discussion Forum version 1.0. The flaw is located in the file /admin/admin forum/add views.php and affects an unknown function...

CVE-2025-10062

A vulnerability was determined in itsourcecode Student Information Management System 1.0. This affects an unknown part of the file /admin/login.php. Executing manipulation of the argument uname can lead to sql injection. The attack may be launched remotely. The exploit has been publicly disclosed...

CVE-2025-10063 itsourcecode POS Point of Sale System deferred_table.php cross site scripting

A vulnerability was identified in itsourcecode POS Point of Sale System 1.0. This vulnerability affects unknown code of the file /inventory/main/vendors/datatables/unittesting/templates/deferredtable.php. The manipulation of the argument scripts leads to cross site scripting. Remote exploitation ...

CVE-2025-10063

The CVE concerns itsourcecode POS Point of Sale System 1.0 with a Cross-Site Scripting (XSS) vulnerability in the file /inventory/main/vendors/datatables/unit_testing/templates/deferred_table.php. The root cause is lack of proper filtering/escaping of input in the scripts parameter, enabling an a...