CVE-2025-13300

Medium CVSS: 6.9

A vulnerability has been found in itsourcecode Web-Based Internet Laboratory Management System 1.0. Affected is an unknown function of the file /settings/controller.php. The manipulation leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Vendor

Itsourcecode

Product

Web-based Internet Laboratory Management System

CWE

CWE-74

Yayın Tarihi

2025-11-17 21:15:56

Güncelleme

2025-11-19 13:06:31

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-74 Web-based Internet Laboratory Management System MEDIUM Itsourcecode 2025

Referanslar

https://github.com/f14g-orz/CVE/issues/6 https://itsourcecode.com/ https://vuldb.com/?ctiid.332640 https://vuldb.com/?id.332640 https://vuldb.com/?submit.691790

Benzer Kayıtlar

Medium

CVE-2026-5334

A weakness has been identified in itsourcecode Online Enrollment System 1.0. Impacted is an unknown function of the file…

Medium

CVE-2026-3730

A security flaw has been discovered in itsourcecode Free Hotel Reservation System 1.0. The affected element is an unknow…

Medium

CVE-2026-3261

A flaw has been found in itsourcecode School Management System 1.0. This impacts an unknown function of the file /settin…

Medium

CVE-2026-2939

A vulnerability was found in itsourcecode Student Management System 1.0. The impacted element is an unknown function of…

Medium

CVE-2026-2190

A security flaw has been discovered in itsourcecode School Management System 1.0. This impacts an unknown function of th…

Medium

CVE-2026-2189

A vulnerability was identified in itsourcecode School Management System 1.0. This affects an unknown function of the fil…