CVE-2025-13235 | itsourcecode Inventory Management System 1.0 /admin/login.php user_email sql injection

Inserito da Angelo Barbosa | Nov 15, 2025 | CVE

A vulnerability was found in itsourcecode Inventory Management System 1.0 and classified as critical. This affects an unknown function of the file /admin/login.php. Executing manipulation of the argument user_email can lead to sql injection.

This vulnerability is registered as CVE-2025-13235. It is possible to launch the attack remotely. Furthermore, an exploit is available.

CVE-2025-13235 | itsourcecode Inventory Management System 1.0 /admin/login.php user_email sql injection

Post correlati

CVE-2024-52725 | SEMCMS 4.8 SEMCMS_SeoAndTag.php ldgid sql injection

CVE-2024-0477 | code-projects Fighting Cock Information System 1.0 update-deworm.php usage_deworm sql injection

CVE-2024-53239 | Linux Kernel up to 6.12.1 ALSA usb6fire_chip_abort use after free

CVE-2024-3196 | MailCleaner up to 2023.03.14 SOAP Service getStats os command injection (MZ-24-01)