CVE-2026-3135 | itsourcecode News Portal Project 1.0 /admin/add-category.php Category sql injection

Inserito da Angelo Barbosa | Feb 24, 2026 | CVE

A vulnerability identified as critical has been detected in itsourcecode News Portal Project 1.0. The impacted element is an unknown function of the file /admin/add-category.php. This manipulation of the argument Category causes sql injection.

The identification of this vulnerability is CVE-2026-3135. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2026-3135 | itsourcecode News Portal Project 1.0 /admin/add-category.php Category sql injection

Post correlati

CVE-2025-70983 | chillzhuang SpringBlade 4.5.0 authRoutes access control

CVE-2025-7454 | Campcodes Online Movie Theater Seat Reservation System 1.0 manage_theater.php ID sql injection

CVE-2024-38887 | Horizon Business Services Caterease up to 24.0.1.2405 SQL User unnecessary privileges

CVE-2025-40548 | SolarWinds Serv-U privileges management