CVE-2025-12617 | itsourcecode Billing System 1.0 login_crud.php Password sql injection

Inserito da Angelo Barbosa | Nov 2, 2025 | CVE

A vulnerability was found in itsourcecode Billing System 1.0. It has been declared as critical. This affects an unknown function of the file /admin/app/login_crud.php. Executing manipulation of the argument Password can lead to sql injection.

This vulnerability is registered as CVE-2025-12617. It is possible to launch the attack remotely. Furthermore, an exploit is available.

CVE-2025-12617 | itsourcecode Billing System 1.0 login_crud.php Password sql injection

Post correlati

CVE-2025-7597 | Tenda AX1803 1.0.0.1 /goform/setMacFilterCfg formSetMacFilterCfg deviceList stack-based overflow

CVE-2024-20755 | Adobe Bridge heap-based overflow (APSB24-15)

CVE-2024-0589 | Devolutions Remote Desktop Manager up to 2023.3.36 on Windows Entry cross site scripting (DEVO-2024-0001)

CVE-2025-32471 | SICK SICK FLX3-CPUC200 weak credentials