CVE-2025-13236 | itsourcecode Inventory Management System 1.0 index.php?view=edit ID sql injection

Inserito da Angelo Barbosa | Nov 15, 2025 | CVE

A vulnerability was found in itsourcecode Inventory Management System 1.0. It has been classified as critical. This impacts an unknown function of the file /admin/products/index.php?view=edit. The manipulation of the argument ID leads to sql injection.

This vulnerability is documented as CVE-2025-13236. The attack can be initiated remotely. Additionally, an exploit exists.

CVE-2025-13236 | itsourcecode Inventory Management System 1.0 index.php?view=edit ID sql injection

Post correlati

CVE-2024-52561 | Parallels Desktop 20.1.1 on macOS Snapshot incorrect ownership assignment (TALOS-2024-2123 / EUVD-2024-54641)

CVE-2024-27895 | Huawei HarmonyOS Window Module permission

CVE-2024-5285 | WP-FeedStats wp-affiliate-platform Plugin up to 6.5.1 on WordPress cross-site request forgery

CVE-2022-24351 | Insyde InsydeH2O up to 05.27.28/05.36.28/05.44.12/05.52.12 Boot toctou