itsourcecode Student Management System SQL注入漏洞

itsourcecode Student Management System is an open source student management system from itsourcecode. A SQL injection vulnerability exists in version 1.0 of itsourcecode Student Management System, which stems from an incorrect manipulation of the parameter sub in the file /newsubject.php, which...

itsourcecode Student Information System SQL注入漏洞

itsourcecode Student Information System is an open source student information system by itsourcecode. A SQL injection vulnerability exists in version 1.0 of itsourcecode Student Information System, which stems from incorrect manipulation of the parameter ID in the file /sectionedit1.php, which...

itsourcecode Student Management System SQL注入漏洞

Student Management System is a student management system. Student Management System suffers from a SQL injection vulnerability that originates from a lack of validation of externally-entered SQL statements in the parameter ID of the file /newcurriculm.php. An attacker can exploit this vulnerabili...

itsourcecode Student Management System SQL注入漏洞

Student Management System is a student management system. Student Management System suffers from a SQL injection vulnerability that originates from the lack of validation of an externally-entered SQL statement in the parameter fname in the file /edituser.php. The vulnerability can be exploited to...

itsourcecode Student Management System 安全漏洞

itsourcecode Student Management System is an open source student management system from itsourcecode. A security vulnerability exists in version 1.0 of itsourcecode Student Management System, which stems from an incorrect manipulation of the parameter ID in the file /newrecord.php, which could le...

CVE-2025-13581

A vulnerability was identified in itsourcecode Student Information System 1.0. Affected by this vulnerability is an unknown functionality of the file /scheduleedit1.php. Such manipulation of the argument scheduleid leads to sql injection. The attack may be launched remotely. The exploit is public...

CVE-2025-13585

A vulnerability was detected in itsourcecode COVID Tracking System 1.0. This issue affects some unknown processing of the file /login.php. The manipulation of the argument code results in sql injection. The attack may be performed from remote. The exploit is now public and may be used...

CVE-2025-13581

A vulnerability was identified in itsourcecode Student Information System 1.0. Affected by this vulnerability is an unknown functionality of the file /scheduleedit1.php. Such manipulation of the argument scheduleid leads to sql injection. The attack may be launched remotely. The exploit is public...

CVE-2025-13581

A vulnerability was identified in itsourcecode Student Information System 1.0. Affected by this vulnerability is an unknown functionality of the file /scheduleedit1.php. Such manipulation of the argument scheduleid leads to sql injection. The attack may be launched remotely. The exploit is public...

CVE-2025-13581

Summary of CVE-2025-13581 (itsourcecode Student Information System 1.0): The vulnerability resides in an unknown functionality of the file /schedule_edit1.php where manipulating the argument schedule_id enables an SQL injection. It can be exploited remotely, and publicly available exploit materia...

CVE-2025-13581 itsourcecode Student Information System schedule_edit1.php sql injection

A vulnerability was identified in itsourcecode Student Information System 1.0. Affected by this vulnerability is an unknown functionality of the file /scheduleedit1.php. Such manipulation of the argument scheduleid leads to sql injection. The attack may be launched remotely. The exploit is public...

CVE-2025-13581 itsourcecode Student Information System schedule_edit1.php sql injection

A vulnerability was identified in itsourcecode Student Information System 1.0. Affected by this vulnerability is an unknown functionality of the file /scheduleedit1.php. Such manipulation of the argument scheduleid leads to sql injection. The attack may be launched remotely. The exploit is public...

itsourcecode Student Information System SQL注入漏洞

itsourcecode Student Information System is an itsourcecode open source student information system. The SQL injection vulnerability exists in itsourcecode Student Information System version 1.0, which stems from an incorrect manipulation of the scheduleid parameter in the file /scheduleedit1.php,...

CVE-2025-13570 itsourcecode COVID Tracking System page sql injection

A vulnerability was found in itsourcecode COVID Tracking System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/?page=state. Performing manipulation of the argument ID results in sql injection. The attack may be initiated remotely. The exploit has been made publ...

CVE-2025-13570 itsourcecode COVID Tracking System page sql injection

A vulnerability was found in itsourcecode COVID Tracking System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/?page=state. Performing manipulation of the argument ID results in sql injection. The attack may be initiated remotely. The exploit has been made publ...

CVE-2025-13569 itsourcecode COVID Tracking System page sql injection

A vulnerability has been found in itsourcecode COVID Tracking System 1.0. Affected is an unknown function of the file /admin/?page=city. Such manipulation of the argument ID leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used...

CVE-2025-13569

Summary: CVE-2025-13569 affects itsourcecode COVID Tracking System 1.0. The vulnerability is an SQL injection in the file path /admin/?page=city caused by manipulation of the ID parameter. It can be exploited remotely and the exploit has been disclosed publicly. Reported across multiple sources (...

CVE-2025-13568 itsourcecode COVID Tracking System page sql injection

A flaw has been found in itsourcecode COVID Tracking System 1.0. This impacts an unknown function of the file /admin/?page=people. This manipulation of the argument ID causes sql injection. The attack can be initiated remotely. The exploit has been published and may be used...

CVE-2025-13568

CVE-2025-13568 itsourcecode COVID Tracking System 1.0 has a SQL injection vulnerability in the admin page at /admin/?page=people, caused by improper handling of the argument ID. The issue is exploitable remotely and an exploit has been published, enabling likely unauthorized data access or manipu...

CVE-2025-13567

A vulnerability was detected in itsourcecode COVID Tracking System 1.0. This affects an unknown function of the file /admin/?page=establishment. The manipulation of the argument ID results in sql injection. It is possible to launch the attack remotely. The exploit is now public and may be used...