CVE-2025-13301

Medium CVSS: 6.9

A vulnerability was found in itsourcecode Web-Based Internet Laboratory Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /subject/controller.php. The manipulation results in sql injection. It is possible to launch the attack remotely. The exploit has been made public and could be used.

Vendor

Itsourcecode

Product

Web-based Internet Laboratory Management System

CWE

CWE-74

Yayın Tarihi

2025-11-17 21:15:56

Güncelleme

2025-11-19 13:06:00

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-74 Web-based Internet Laboratory Management System MEDIUM Itsourcecode 2025

Referanslar

https://github.com/f14g-orz/CVE/issues/7 https://itsourcecode.com/ https://vuldb.com/?ctiid.332641 https://vuldb.com/?id.332641 https://vuldb.com/?submit.691793

Benzer Kayıtlar

Medium

CVE-2026-5334

A weakness has been identified in itsourcecode Online Enrollment System 1.0. Impacted is an unknown function of the file…

Medium

CVE-2026-3730

A security flaw has been discovered in itsourcecode Free Hotel Reservation System 1.0. The affected element is an unknow…

Medium

CVE-2026-3261

A flaw has been found in itsourcecode School Management System 1.0. This impacts an unknown function of the file /settin…

Medium

CVE-2026-2939

A vulnerability was found in itsourcecode Student Management System 1.0. The impacted element is an unknown function of…

Medium

CVE-2026-2190

A security flaw has been discovered in itsourcecode School Management System 1.0. This impacts an unknown function of th…

Medium

CVE-2026-2189

A vulnerability was identified in itsourcecode School Management System 1.0. This affects an unknown function of the fil…