CVE-2025-10667

Medium CVSS: 6.9

A weakness has been identified in itsourcecode Online Discussion Forum 1.0. Affected by this issue is some unknown functionality of the file /members/compose_msg.php. This manipulation of the argument ID causes sql injection. The attack is possible to be carried out remotely. The exploit has been made available to the public and could be exploited.

Vendor

Emiloi

Product

Online Discussion Forum

CWE

CWE-74

Yayın Tarihi

2025-09-18 13:15:35

Güncelleme

2025-09-20 02:35:52

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-74 Online Discussion Forum MEDIUM Emiloi 2025

Referanslar

https://github.com/S77code/CVE1/issues/1 https://itsourcecode.com/ https://vuldb.com/?ctiid.324788 https://vuldb.com/?id.324788 https://vuldb.com/?submit.652167

Benzer Kayıtlar

Medium

CVE-2026-3046

A security vulnerability has been detected in itsourcecode E-Logbook with Health Monitoring System for COVID-19 1.0. Thi…

Medium

CVE-2025-10800

A weakness has been identified in itsourcecode Online Discussion Forum 1.0. The impacted element is an unknown function…

Medium

CVE-2025-10670

A flaw has been found in itsourcecode E-Logbook with Health Monitoring System for COVID-19 1.0. This issue affects some…

Medium

CVE-2025-10668

A security vulnerability has been detected in itsourcecode Online Discussion Forum 1.0. This affects an unknown part of…

Medium

CVE-2025-10614

A vulnerability was determined in itsourcecode E-Logbook with Health Monitoring System for COVID-19 1.0 on COVID. This a…

Medium

CVE-2025-10604

A vulnerability was identified in PHPGurukul Online Discussion Forum 1.0. This affects an unknown part of the file /admi…