VYPR

Vendor CVEs

Itsourcecode

All CVEs

463 total · sorted by risk
  • CVE-2025-0950Feb 1, 2025
    risk 0.00cvss epss 0.00

    A vulnerability was found in itsourcecode Tailoring Management System 1.0 and classified as critical. This issue affects some unknown processing of the file staffview.php. The manipulation of the argument staffid leads to sql injection. The attack may be initiated remotely. The…

  • CVE-2025-0949Feb 1, 2025
    risk 0.00cvss epss 0.00

    A vulnerability has been found in itsourcecode Tailoring Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file partview.php. The manipulation of the argument typeid leads to sql injection. The attack can be initiated remotely. The…

  • CVE-2025-0948Feb 1, 2025
    risk 0.00cvss epss 0.00

    A vulnerability, which was classified as critical, was found in itsourcecode Tailoring Management System 1.0. This affects an unknown part of the file incview.php. The manipulation of the argument incid leads to sql injection. It is possible to initiate the attack remotely. The…

  • CVE-2025-0947Feb 1, 2025
    risk 0.00cvss epss 0.00

    A vulnerability, which was classified as critical, has been found in itsourcecode Tailoring Management System 1.0. Affected by this issue is some unknown functionality of the file expview.php. The manipulation of the argument expid leads to sql injection. The attack may be…

  • CVE-2025-0946Feb 1, 2025
    risk 0.00cvss epss 0.00

    A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0. Affected by this vulnerability is an unknown functionality of the file templatedelete.php. The manipulation of the argument id leads to sql injection. The attack can be launched…

  • CVE-2025-0945Feb 1, 2025
    risk 0.00cvss epss 0.00

    A vulnerability classified as critical has been found in itsourcecode Tailoring Management System 1.0. Affected is an unknown function of the file typedelete.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The…

  • CVE-2025-0944Feb 1, 2025
    risk 0.00cvss epss 0.01

    A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file customerview.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely.…

  • CVE-2025-0943Feb 1, 2025
    risk 0.00cvss epss 0.01

    A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file deldoc.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The…

  • CVE-2025-0873Jan 30, 2025
    risk 0.00cvss epss 0.01

    A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /customeredit.php. The manipulation of the argument id/address/fullname/phonenumber/email/city/comment leads…

  • CVE-2025-0872Jan 30, 2025
    risk 0.00cvss epss 0.01

    A vulnerability classified as critical has been found in itsourcecode Tailoring Management System 1.0. Affected is an unknown function of the file /addpayment.php. The manipulation of the argument id/amount/desc/inccat leads to sql injection. It is possible to launch the attack…

  • CVE-2025-0582Jan 20, 2025
    risk 0.00cvss epss 0.01

    A vulnerability classified as critical was found in itsourcecode Farm Management System up to 1.0. This vulnerability affects unknown code of the file /add-pig.php. The manipulation of the argument pigphoto leads to unrestricted upload. The attack can be initiated remotely.

  • CVE-2025-0561Jan 18, 2025
    risk 0.00cvss epss 0.01

    A vulnerability has been found in itsourcecode Farm Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /add-pig.php. The manipulation of the argument pigno leads to sql injection. The attack can be initiated remotely. The…

  • CVE-2025-0540Jan 17, 2025
    risk 0.00cvss epss 0.01

    A vulnerability has been found in itsourcecode Tailoring Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /expadd.php. The manipulation of the argument expcat leads to sql injection. The attack can be initiated remotely. The…

  • CVE-2024-12785Dec 19, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in itsourcecode Vehicle Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file sendmail.php. The manipulation of the argument id leads to sql injection. The attack can be launched…

  • CVE-2024-12784Dec 19, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in itsourcecode Vehicle Management System 1.0. It has been classified as critical. Affected is an unknown function of the file editbill.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The…

  • CVE-2024-12783Dec 19, 2024
    risk 0.00cvss epss 0.00

    A vulnerability was found in itsourcecode Vehicle Management System 1.0 and classified as problematic. This issue affects some unknown processing of the file /billaction.php. The manipulation of the argument extra-cost leads to cross site scripting. The attack may be initiated…

  • CVE-2024-11631Nov 23, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in itsourcecode Tailoring Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /expedit.php. The manipulation of the argument expcat leads to sql injection. The attack may be initiated remotely. The…

  • CVE-2024-11589Nov 21, 2024
    risk 0.00cvss epss 0.01

    A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /expcatedit.php. The manipulation of the argument id leads to sql injection. The attack can be launched…

  • CVE-2024-50972Nov 13, 2024
    risk 0.00cvss epss 0.01

    A SQL injection vulnerability in printtool.php of Itsourcecode Construction Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the borrow_id parameter.

  • CVE-2024-50970Nov 13, 2024
    risk 0.00cvss epss 0.01

    A SQL injection vulnerability in orderview1.php of Itsourcecode Online Furniture Shopping Project 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.

  • CVE-2024-50971Nov 13, 2024
    risk 0.00cvss epss 0.01

    A SQL injection vulnerability in print.php of Itsourcecode Construction Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the map_id parameter.

  • CVE-2024-11074Nov 11, 2024
    risk 0.00cvss epss 0.01

    A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0. This vulnerability affects unknown code of the file /incadd.php. The manipulation of the argument inccat/desc/date/amount leads to sql injection. The attack can be initiated…

  • CVE-2024-10759Nov 4, 2024
    risk 0.00cvss epss 0.01

    A vulnerability has been found in itsourcecode Farm Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /edit-pig.php. The manipulation of the argument pigno/weight/arrived/breed/remark/status leads to sql injection. The attack…

  • CVE-2024-10738Nov 3, 2024
    risk 0.00cvss epss 0.01

    A vulnerability classified as critical was found in itsourcecode Farm Management System 1.0. Affected by this vulnerability is an unknown functionality of the file manage-breed.php. The manipulation of the argument breed leads to sql injection. The attack can be launched…

  • CVE-2024-10609Nov 1, 2024
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as critical, was found in itsourcecode Tailoring Management System Project 1.0. This affects an unknown part of the file typeadd.php. The manipulation of the argument sex leads to sql injection. It is possible to initiate the attack…

  • CVE-2024-48415Oct 22, 2024
    risk 0.00cvss epss 0.00

    itsourcecode Loan Management System v1.0 is vulnerable to Cross Site Scripting (XSS) via a crafted payload to the lastname, firstname, middlename, address, contact_no, email and tax_id parameters in new borrowers functionality on the Borrowers page.

  • CVE-2024-46300Oct 7, 2024
    risk 0.00cvss epss 0.00

    itsourcecode Placement Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via the Full Name field in registration.php.

  • CVE-2024-8611Sep 9, 2024
    risk 0.00cvss epss 0.01

    A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0. Affected by this vulnerability is an unknown functionality of the file ssms.php. The manipulation of the argument customer leads to sql injection. The attack can be launched…

  • CVE-2024-8570Sep 8, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in itsourcecode Tailoring Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /inccatadd.php. The manipulation of the argument title leads to sql injection. The attack may be launched…

  • CVE-2024-8567Sep 8, 2024
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as critical, has been found in itsourcecode Payroll Management System 1.0. This issue affects some unknown processing of the file /ajax.php?action=delete_deductions. The manipulation of the argument id leads to sql injection. The attack may…

  • CVE-2024-44587Sep 5, 2024
    risk 0.00cvss epss 0.01

    itsourcecode Alton Management System 1.0 is vulnerable to SQL Injection in /noncombo_save.php via the "menu" parameter.

  • CVE-2024-8220Aug 27, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file staffedit.php. The manipulation of the argument id/stafftype/address/fullname/phonenumber/salary…

  • CVE-2024-8171Aug 26, 2024
    risk 0.00cvss epss 0.01

    A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0. This vulnerability affects unknown code of the file staffcatedit.php. The manipulation of the argument title leads to sql injection. The attack can be initiated remotely. The…

  • CVE-2024-42918Aug 23, 2024
    risk 0.00cvss epss 0.00

    itsourcecode Online Accreditation Management System contains a Cross Site Scripting vulnerability, which allows an attacker to execute arbitrary code via a crafted payload to the SCHOOLNAME, EMAILADDRES, CONTACTNO, COMPANYNAME and COMPANYCONTACTNO parameters in controller.php.

  • CVE-2024-8081Aug 22, 2024
    risk 0.00cvss epss 0.01

    A vulnerability classified as critical was found in itsourcecode Payroll Management System 1.0. Affected by this vulnerability is an unknown functionality of the file login.php. The manipulation of the argument username leads to sql injection. The attack can be launched…

  • CVE-2024-7945Aug 20, 2024
    risk 0.00cvss epss 0.00

    A vulnerability was found in itsourcecode Laravel Property Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/notes/create of the component Notes Page. The manipulation of the argument Note…

  • CVE-2024-7944Aug 20, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in itsourcecode Laravel Property Management System 1.0. It has been classified as critical. Affected is the function UpdateDocumentsRequest of the file DocumentsController.php. The manipulation leads to unrestricted upload. It is possible to launch the…

  • CVE-2024-7943Aug 20, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in itsourcecode Laravel Property Management System 1.0 and classified as critical. This issue affects the function upload of the file PropertiesController.php. The manipulation of the argument file leads to unrestricted upload. The attack may be…

  • CVE-2024-7913Aug 18, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in itsourcecode Billing System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /addclient1.php. The manipulation of the argument lname/fname/mi/address/contact/meterReader leads to sql injection. The attack may…

  • CVE-2024-7839Aug 15, 2024
    risk 0.00cvss epss 0.01

    A vulnerability classified as critical has been found in itsourcecode Billing System 1.0. This affects an unknown part of the file addbill.php. The manipulation of the argument owners_id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been…

  • CVE-2024-7838Aug 15, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in itsourcecode Online Food Ordering System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /addcategory.php. The manipulation of the argument cname leads to sql injection. The attack may be launched…

  • CVE-2024-7794Aug 14, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in itsourcecode Vehicle Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file mybill.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely.…

  • CVE-2024-7680Aug 11, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been classified as critical. This affects an unknown part of the file /incedit.php?id=4. The manipulation of the argument id/inccat/desc/date/amount leads to sql injection. It is possible to…

  • CVE-2024-7506Aug 6, 2024
    risk 0.00cvss epss 0.01

    A vulnerability has been found in itsourcecode Tailoring Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /setlogo.php. The manipulation of the argument bgimg leads to unrestricted upload. The attack can be…

  • CVE-2024-7505Aug 6, 2024
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as critical, was found in itsourcecode Bike Delivery System 1.0. Affected is an unknown function of the file contact_us_action.php. The manipulation of the argument name leads to sql injection. It is possible to launch the attack remotely.…

  • CVE-2024-7500Aug 6, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in itsourcecode Airline Reservation System 1.0. It has been rated as critical. Affected by this issue is the function save_settings of the file admin/admin_class.php. The manipulation of the argument img leads to unrestricted upload. The attack may be…

  • CVE-2024-7499Aug 6, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in itsourcecode Airline Reservation System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file flights.php. The manipulation of the argument departure_airport_id leads to sql injection. The…

  • CVE-2024-7498Aug 6, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in itsourcecode Airline Reservation System 1.0. It has been classified as critical. Affected is the function login/login2 of the file /admin/login.php of the component Admin Login Page. The manipulation of the argument username leads to sql injection.…

  • CVE-2024-7497Aug 6, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in itsourcecode Airline Reservation System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/index.php. The manipulation of the argument page leads to file inclusion. The attack may be initiated remotely. The…

  • CVE-2024-7496Aug 6, 2024
    risk 0.00cvss epss 0.01

    A vulnerability has been found in itsourcecode Airline Reservation System 1.0 and classified as critical. This vulnerability affects unknown code of the file /index.php. The manipulation of the argument page leads to file inclusion. The attack can be initiated remotely. The…

Page 7 of 10