CVE-2026-1688 | itsourcecode Directory Management System 1.0 /admin/index.php Username sql injection

Inserito da Angelo Barbosa | Gen 30, 2026 | CVE

A vulnerability was found in itsourcecode Directory Management System 1.0. It has been classified as critical. The affected element is an unknown function of the file /admin/index.php. The manipulation of the argument Username leads to sql injection.

This vulnerability is documented as CVE-2026-1688. The attack can be initiated remotely. Additionally, an exploit exists.

CVE-2026-1688 | itsourcecode Directory Management System 1.0 /admin/index.php Username sql injection

Post correlati

CVE-2024-47723 | Linux Kernel up to 6.11.1 dbNextAG/diAlloc out-of-bounds

CVE-2024-1910 | Categorify Plugin up to 1.0.7.4 on WordPress categorifyAjaxClearCategory cross-site request forgery

CVE-2023-46050 | MiniZinc libminizinc 2.7.6 Preferences.json null pointer dereference

CVE-2024-53845 | Espressif ESP-IDF up to 5.0.7/5.1.5/5.2.3/5.3.1 ESPTouchV2 Protocol risky encryption (GHSA-wm57-466g-mhrr)