CVE-2026-2217 | itsourcecode Event Management System 1.0 /admin/manage_user.php ID sql injection

Inserito da Angelo Barbosa | Feb 8, 2026 | CVE

A vulnerability, which was classified as critical, was found in itsourcecode Event Management System 1.0. The impacted element is an unknown function of the file /admin/manage_user.php. The manipulation of the argument ID results in sql injection.

This vulnerability is cataloged as CVE-2026-2217. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2026-2217 | itsourcecode Event Management System 1.0 /admin/manage_user.php ID sql injection

Post correlati

CVE-2024-21648 | XWiki xwiki-platform/xwiki-platform-oldcore Rollback Action insufficient privileges

CVE-2025-50526 | Netgear EX8000 1.0.0.126 switch_status command injection

CVE-2024-23322 | envoyproxy envoy up to 1.26.7/1.27.3/1.28.1/1.29.1 Timeout use after free (GHSA-6p83-mfmh-qv38)

CVE-2025-1744 | Radare2 up to 5.9.8 out-of-bounds write