CVE-2025-9594

itsourcecode Apartment Management System complain_info.php sql injection

CVSS 6.9 MEDIUMEPSS 0.4%CWE-74 CWE-89

A vulnerability has been found in itsourcecode Apartment Management System 1.0. The affected element is an unknown function of the file /report/complain_info.php. The manipulation of the argument vid leads to sql injection. The attack is possible to be carried out remotely. The exploit has been disclosed to the public and may be used.

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P

Produtos afetados

itsourcecode · Apartment Management System

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/pjy2004/cve/issues/1 https://itsourcecode.com/https://vuldb.com/?ctiid.321768 https://vuldb.com/?id.321768 https://vuldb.com/?submit.636187