CVE-2025-15168 | itsourcecode Student Management System 1.0 /statistical.php ID sql injection

Inserito da Angelo Barbosa | Dic 28, 2025 | CVE

A vulnerability described as critical has been identified in itsourcecode Student Management System 1.0. Affected is an unknown function of the file /statistical.php. Such manipulation of the argument ID leads to sql injection.

This vulnerability is documented as CVE-2025-15168. The attack can be executed remotely. Additionally, an exploit exists.

CVE-2025-15168 | itsourcecode Student Management System 1.0 /statistical.php ID sql injection

Post correlati

CVE-2024-5191 | Branda Plugin up to 3.4.17 on WordPress SVG Upload cross site scripting

CVE-2024-47238 | Dell Client Platform BIOS 1.18.x/1.24.x/1.28.x input validation (dsa-2024-355)

CVE-2024-43044 | Jenkins prior LTS 2.452.3/2.470 Agent Process ClassLoaderProxy#fetchJar information disclosure

CVE-2023-49810 | WWBN AVideo 15fed957fb HTTP Request checkLoginAttempts excessive authentication (TALOS-2023-1898)