CVE-2025-14588 | itsourcecode Student Management System 1.0 /update_program.php ID sql injection

Inserito da Angelo Barbosa | Dic 12, 2025 | CVE

A vulnerability marked as critical has been reported in itsourcecode Student Management System 1.0. This vulnerability affects unknown code of the file /update_program.php. Performing manipulation of the argument ID results in sql injection.

This vulnerability is reported as CVE-2025-14588. The attack is possible to be carried out remotely. Moreover, an exploit is present.

CVE-2025-14588 | itsourcecode Student Management System 1.0 /update_program.php ID sql injection

Post correlati

CVE-2024-45808 | Envoy up to 1.28.6/1.29.4/1.30.0 REQUESTED_SERVER_NAME neutralization for logs (GHSA-p222-xhp9-39rc)

CVE-2024-2056 | Artica Proxy 4.50 Loopback Interface authentication bypass

CVE-2024-43376 | Umbraco CMS up to 14.1.1 Management API information exposure

CVE-2024-3257 | SourceCodester Internship Portal Management System 1.0 edit_activity_query.php title/description/start/end sql injection