PT-2025-28468 · Itsourcecode · Itsourcecode Student Transcript Processing System

Name of the Vulnerable Software and Affected Versions: itsourcecode Student Transcript Processing System version 1.0 Description: A vulnerability has been found in the itsourcecode Student Transcript Processing System, affecting an unknown functionality of the file /admin/modules/subject/edit.php...

itsourcecode Student Transcript Processing System 代码注入漏洞

itsourcecode Student Transcript Processing System is itsourcecode open source a student transcript processing system . A code injection vulnerability exists in itsourcecode Student Transcript Processing System version 1.0, which originates from improper manipulation of the parameter pre in the fi...

CVE-2025-7127

CVE-2025-7127 affects itsourcecode Employee Management System up to v1.0, with a SQL injection in /admin/changepassword.php caused by unsafely handling the currentpassword parameter. Exploitation can be performed remotely; public disclosure is noted. Connected sources also suggest mitigations suc...

CVE-2025-7126 itsourcecode Employee Management System adminprofile.php sql injection

A vulnerability, which was classified as critical, has been found in itsourcecode Employee Management System up to 1.0. Affected by this issue is some unknown functionality of the file /admin/adminprofile.php. The manipulation of the argument AdminName leads to sql injection. The attack may be...

CVE-2025-7126 itsourcecode Employee Management System adminprofile.php sql injection

A vulnerability, which was classified as critical, has been found in itsourcecode Employee Management System up to 1.0. Affected by this issue is some unknown functionality of the file /admin/adminprofile.php. The manipulation of the argument AdminName leads to sql injection. The attack may be...

CVE-2025-7125 itsourcecode Employee Management System editempeducation.php sql injection

A vulnerability classified as critical was found in itsourcecode Employee Management System up to 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/editempeducation.php. The manipulation of the argument coursepg leads to sql injection. The attack can be launched...

itsourcecode Employee Management System 安全漏洞

itsourcecode Employee Management System is a itsourcecode open source employee management system. A security vulnerability exists in itsourcecode Employee Management System 1.0 and earlier versions, which stems from improper handling of the parameter coursepg in the file...

itsourcecode Employee Management System 安全漏洞

itsourcecode Employee Management System is an open source employee management system from itsourcecode. A security vulnerability exists in itsourcecode Employee Management System 1.0 and earlier versions, which stems from an improper handling of the parameter AdminName in the file...

itsourcecode Employee Management System 安全漏洞

itsourcecode Employee Management System is a itsourcecode open source employee management system. A security vulnerability exists in itsourcecode Employee Management System 1.0 and earlier versions, which stems from an improper handling of the parameter currentpassword in the file...

PT-2025-28162 · Unknown · Sourcecodester Employee Management System

Name of the Vulnerable Software and Affected Versions: itsourcecode Employee Management System versions up to 1.0 Description: A critical issue was found in the itsourcecode Employee Management System. The problem affects the /admin/changepassword.php file, where the manipulation of the...

CVE-2025-6610

A vulnerability was found in itsourcecode Employee Management System up to 1.0. It has been classified as critical. This affects an unknown part of the file /admin/editempprofile.php. The manipulation of the argument FirstName leads to sql injection. It is possible to initiate the attack remotely...

CVE-2025-6610

A vulnerability was found in itsourcecode Employee Management System up to 1.0. It has been classified as critical. This affects an unknown part of the file /admin/editempprofile.php. The manipulation of the argument FirstName leads to sql injection. It is possible to initiate the attack remotely...

CVE-2025-6610

A vulnerability was found in itsourcecode Employee Management System up to 1.0. It has been classified as critical. This affects an unknown part of the file /admin/editempprofile.php. The manipulation of the argument FirstName leads to sql injection. It is possible to initiate the attack remotely...

CVE-2025-6489

A vulnerability has been found in itsourcecode Agri-Trading Online Shopping System 1.0 and classified as critical. This vulnerability affects unknown code of the file /transactionsave.php. The manipulation of the argument del leads to sql injection. The attack can be initiated remotely. The explo...

CVE-2025-6489 itsourcecode Agri-Trading Online Shopping System transactionsave.php sql injection

A vulnerability has been found in itsourcecode Agri-Trading Online Shopping System 1.0 and classified as critical. This vulnerability affects unknown code of the file /transactionsave.php. The manipulation of the argument del leads to sql injection. The attack can be initiated remotely. The explo...

CVE-2025-6351

A vulnerability was found in itsourcecode Employee Record Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /editprofile.php. The manipulation of the argument emp1name leads to sql injection. The attack may be initiated remotely. The...

CVE-2025-0949

A vulnerability has been found in itsourcecode Tailoring Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file partview.php. The manipulation of the argument typeid leads to sql injection. The attack can be initiated remotely. The exploit has been...

CVE-2025-0872

A vulnerability classified as critical has been found in itsourcecode Tailoring Management System 1.0. Affected is an unknown function of the file /addpayment.php. The manipulation of the argument id/amount/desc/inccat leads to sql injection. It is possible to launch the attack remotely. The...

CVE-2025-0947

A vulnerability, which was classified as critical, has been found in itsourcecode Tailoring Management System 1.0. Affected by this issue is some unknown functionality of the file expview.php. The manipulation of the argument expid leads to sql injection. The attack may be launched remotely. The...

CVE-2025-0948

A vulnerability, which was classified as critical, was found in itsourcecode Tailoring Management System 1.0. This affects an unknown part of the file incview.php. The manipulation of the argument incid leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...