CVE-2025-4023 | itsourcecode Placement Management System 1.0 /add_company.php Name sql injection

Inserito da Angelo Barbosa | Apr 27, 2025 | CVE

A vulnerability was found in itsourcecode Placement Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /add_company.php. The manipulation of the argument Name leads to sql injection.

The identification of this vulnerability is CVE-2025-4023. The attack may be initiated remotely. Furthermore, there is an exploit available.

Other parameters might be affected as well.

CVE-2025-4023 | itsourcecode Placement Management System 1.0 /add_company.php Name sql injection

Post correlati

CVE-2024-1591 | BeyondTrust Privilege Management up to 24.0 on Windows Sysvol information disclosure

CVE-2024-0833 | Progress Telerik Test Studio prior 2023.3.1330 Applications Installer privileges management

CVE-2024-8850 | MC4WP Plugin 4.9.9/4.9.16 on WordPress cross site scripting

CVE-2024-24683 | Apache Hop Engine up to 2.7.x PrepareExecutionPipelineServlet Page id cross site scripting