Medium severity6.3NVD Advisory· Published Jan 30, 2025· Updated Jun 17, 2026
CVE-2025-0872
CVE-2025-0872
Description
A vulnerability classified as critical has been found in itsourcecode Tailoring Management System 1.0. Affected is an unknown function of the file /addpayment.php. The manipulation of the argument id/amount/desc/inccat leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<1.0+ 1 more
- (no CPE)range: <1.0
- (no CPE)range: 1.0
Patches
Vulnerability mechanics
References
5- github.com/magic2353112890/cve/issues/3nvdExploitThird Party Advisory
- vuldb.comnvdPermissions RequiredThird Party AdvisoryVDB Entry
- vuldb.comnvdThird Party AdvisoryVDB Entry
- vuldb.comnvdThird Party AdvisoryVDB Entry
- itsourcecode.comnvdProduct
News mentions
0No linked articles in our index yet.