2 matches found
CVE-2026-1688
CVE-2026-1688 details (itsourcecode Directory Management System 1.0): The vulnerability resides in an unknown function in the file /admin/index.php, where manipulating the Username parameter triggers an SQL injection. The issue is exploitable remotely and has been publicly disclosed. Multiple sou...
CVE-2026-2161
The CVE-2026-2161 entry concerns itsourcecode Directory Management System 1.0, specifically a SQL injection in /admin/forget-password.php triggered by manipulating the email parameter. The issue is exploitable remotely, and public exploits exist. Connected sources consistently describe the vulner...