CVE-2025-13298

Medium CVSS: 6.9

A vulnerability was detected in itsourcecode Web-Based Internet Laboratory Management System 1.0. This affects an unknown function of the file /enrollment/controller.php. Performing a manipulation results in sql injection. The attack is possible to be carried out remotely. The exploit is now public and may be used.

Vendor

Itsourcecode

Product

Web-based Internet Laboratory Management System

CWE

CWE-74

Yayın Tarihi

2025-11-17 20:15:50

Güncelleme

2026-02-24 07:16:48

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-74 Web-based Internet Laboratory Management System MEDIUM Itsourcecode 2025

Referanslar

https://github.com/f14g-orz/CVE/issues/4 https://itsourcecode.com/ https://vuldb.com/?ctiid.332638 https://vuldb.com/?id.332638 https://vuldb.com/?submit.691787

Benzer Kayıtlar

Medium

CVE-2026-5334

A weakness has been identified in itsourcecode Online Enrollment System 1.0. Impacted is an unknown function of the file…

Medium

CVE-2026-3730

A security flaw has been discovered in itsourcecode Free Hotel Reservation System 1.0. The affected element is an unknow…

Medium

CVE-2026-3261

A flaw has been found in itsourcecode School Management System 1.0. This impacts an unknown function of the file /settin…

Medium

CVE-2026-2939

A vulnerability was found in itsourcecode Student Management System 1.0. The impacted element is an unknown function of…

Medium

CVE-2026-2190

A security flaw has been discovered in itsourcecode School Management System 1.0. This impacts an unknown function of th…

Medium

CVE-2026-2189

A vulnerability was identified in itsourcecode School Management System 1.0. This affects an unknown function of the fil…