4 matches found
CVE-2025-4311
CVE-2025-4311 affects itsourcecode Content Management System 1.0. The vulnerability resides in the /admin/update_main_topic_img.php?topic_id=529 endpoint, where manipulation of the topic_id parameter enables SQL injection. Exploitation is possible remotely, and public disclosure exists. Multiple ...
CVE-2025-4310
The CVE-2025-4310 entry affects itsourcecode Content Management System 1.0. The vulnerability lies in the /admin/add_topic.php?category=BBS endpoint where the Cover Image parameter can be manipulated to achieve unrestricted file uploads. This is caused by improper validation/handling of the Cover...
CVE-2025-4300
CVE-2025-4300 affects itsourcecode Content Management System 1.0. The vulnerability is a SQL injection in an unknown function within /search_list.php triggered by manipulating the Search parameter. It is exploitable remotely and multiple sources state the exploit has been publicly disclosed. Tech...
CVE-2025-4301
The CVE-2025-4301 entry affects itsourcecode Content Management System 1.0. Affected component: the file /search-notice.php. Root cause: manipulation of the searchdata parameter leads to SQL injection. Impact: remotely exploitable with potential unauthorized access or data exposure, as reflected ...