CVE-2025-14336 | itsourcecode Student Management System 1.0 /promote.php sy sql injection

Inserito da Angelo Barbosa | Dic 9, 2025 | CVE

A vulnerability classified as critical was found in itsourcecode Student Management System 1.0. Affected by this issue is some unknown functionality of the file /promote.php. The manipulation of the argument sy results in sql injection.

This vulnerability is known as CVE-2025-14336. It is possible to launch the attack remotely. Furthermore, an exploit is available.

CVE-2025-14336 | itsourcecode Student Management System 1.0 /promote.php sy sql injection

Post correlati

CVE-2025-9976 | Dassault Systèmes 3DEXPERIENCE Platform Station Launcher App os command injection

CVE-2024-38268 | Zyxel VMG8825-T50K up to 5.50(ABOM.8)C0 MAC Address Parser memory corruption

CVE-2025-10183 | TecCom TecConnect 4.1 xml external entity reference

CVE-2025-26765 | enituretechnology Distance Based Shipping Calculator Plugin up to 2.0.22 on WordPress authorization