CVE-2025-13210 | itsourcecode Inventory Management System 1.0 index.php?view=add PROMODEL sql injection

Inserito da Angelo Barbosa | Nov 14, 2025 | CVE

A vulnerability classified as critical was found in itsourcecode Inventory Management System 1.0. This impacts an unknown function of the file /admin/products/index.php?view=add. Such manipulation of the argument PROMODEL leads to sql injection.

This vulnerability is listed as CVE-2025-13210. The attack may be performed from remote. In addition, an exploit is available.

CVE-2025-13210 | itsourcecode Inventory Management System 1.0 index.php?view=add PROMODEL sql injection

Post correlati

CVE-2024-11912 | Traveler Plugin up to 3.1.6 on WordPress order_id sql injection

CVE-2024-41127 | monkeytypegame monkeytype prior 24.30.0 ./pr_num/pr_num.txt injection (GHSA-wcjf-5464-4wq9)

CVE-2024-24113 | XXL-Job 2.4.1 server-side request forgery

CVE-2025-1123 | Solid Mail Plugin up to 2.1.5 on WordPress Email cross site scripting