PT-2026-21426

A vulnerability was found in itsourcecode Student Management System 1.0. The impacted element is an unknown function of the file /add student/ of the component Add Student Module. The manipulation results in cross site scripting. It is possible to launch the attack remotely. The exploit has been...

itsourcecode Agri-Trading Online Shopping System SQL注入漏洞

itsourcecode Agri-Trading Online Shopping System is an open-source online shopping system developed by itsourcecode. Version 1.0 of the itsourcecode Agri-Trading Online Shopping System has a SQL injection vulnerability. This vulnerability arises from the handling of the Product parameter in the...

itsourcecode Vehicle Management System SQL注入漏洞

itsourcecode Vehicle Management System is an open-source vehicle management system developed by itsourcecode. Version 1.0 of the itsourcecode Vehicle Management System has a SQL injection vulnerability. This vulnerability arises from the handling of parameter IDs in the /billaction.php file, whic...

CVE-2026-2689

A vulnerability was detected in itsourcecode Event Management System 1.0. Affected is an unknown function of the file /admin/managebooking.php. The manipulation of the argument ID results in sql injection. The attack may be performed from remote. The exploit is now public and may be used...

CVE-2026-2691

A vulnerability has been found in itsourcecode Event Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/manageregister.php. Such manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

CVE-2026-2690

A flaw has been found in itsourcecode Event Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/ajax.php?action=login of the component Admin Login. This manipulation of the argument Username causes sql injection. It is possible to initiate the atta...

CVE-2026-2691

A vulnerability has been found in itsourcecode Event Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/manageregister.php. Such manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

CVE-2026-2689

A vulnerability was detected in itsourcecode Event Management System 1.0. Affected is an unknown function of the file /admin/managebooking.php. The manipulation of the argument ID results in sql injection. The attack may be performed from remote. The exploit is now public and may be used...

CVE-2026-2691 itsourcecode Event Management System manage_register.php sql injection

A vulnerability has been found in itsourcecode Event Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/manageregister.php. Such manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

CVE-2026-2691 itsourcecode Event Management System manage_register.php sql injection

A vulnerability has been found in itsourcecode Event Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/manageregister.php. Such manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

CVE-2026-2691

CVE-2026-2691 affects itsourcecode Event Management System 1.0. The vulnerability is in the file /admin/manage_register.php (and related manage_register.php references) where manipulation of the ID argument leads to SQL injection. It is described as exploitable remotely with a publicly disclosed ...

CVE-2026-2690 itsourcecode Event Management System Admin Login ajax.php sql injection

A flaw has been found in itsourcecode Event Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/ajax.php?action=login of the component Admin Login. This manipulation of the argument Username causes sql injection. It is possible to initiate the atta...

CVE-2026-2690 itsourcecode Event Management System Admin Login ajax.php sql injection

A flaw has been found in itsourcecode Event Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/ajax.php?action=login of the component Admin Login. This manipulation of the argument Username causes sql injection. It is possible to initiate the atta...

CVE-2026-2690

The affected product is itsourcecode Event Management System 1.0. The vulnerability lies in the Admin Login function, specifically /admin/ajax.php?action=login, where manipulation of the Username parameter triggers SQL injection. Exploitation is possible remotely, and an exploit has been publishe...

CVE-2026-2689

CVE-2026-2689 affects itsourcecode Event Management System 1.0. A vulnerability in the /admin/manage_booking.php file allows manipulation of the ID parameter to trigger SQL injection. Exploitation is remote-capable and publicly available, indicating practical risk for affected deployments. Multip...

CVE-2026-2689 itsourcecode Event Management System manage_booking.php sql injection

A vulnerability was detected in itsourcecode Event Management System 1.0. Affected is an unknown function of the file /admin/managebooking.php. The manipulation of the argument ID results in sql injection. The attack may be performed from remote. The exploit is now public and may be used...

CVE-2026-2689 itsourcecode Event Management System manage_booking.php sql injection

A vulnerability was detected in itsourcecode Event Management System 1.0. Affected is an unknown function of the file /admin/managebooking.php. The manipulation of the argument ID results in sql injection. The attack may be performed from remote. The exploit is now public and may be used...

itsourcecode Event Management System SQL注入漏洞

itsourcecode Event Management System is an open-source event management system developed by itsourcecode. Version 1.0 of the itsourcecode Event Management System has a SQL injection vulnerability. This vulnerability arises from incorrect handling of the parameter ID in the...

PT-2026-20570

Name of the Vulnerable Software and Affected Versions itsourcecode Event Management System version 1.0 Description A SQL injection issue exists in itsourcecode Event Management System version 1.0. The issue is located in the /admin/manage register.php file. Manipulation of the ID argument can lea...

itsourcecode Event Management System SQL注入漏洞

itsourcecode Event Management System is an open-source event management system developed by itsourcecode. Version 1.0 of the itsourcecode Event Management System has a SQL injection vulnerability. This vulnerability arises from incorrect handling of the parameter ID in the file...