CVE-2025-4486 – iSourcecode Gym Management System SQL Injection Vulnerability

May 9, 2025

CVE ID : CVE-2025-4486

Published : May 9, 2025, 8:15 p.m. | 4 hours, 3 minutes ago

Description : A vulnerability was found in itsourcecode Gym Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /ajax.php?action=delete_plan. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4447 – Eclipse OpenJ9 OpenJDK Stack Buffer Overflow

Next Article CVE-2025-4488 – iSourcecode Gym Management System SQL Injection Vulnerability

Highlights

CVE-2025-48073 – OpenEXR NULL Pointer Dereference Vulnerability

July 31, 2025

CVE ID : CVE-2025-48073

Published : July 31, 2025, 9:15 p.m. | 3 hours, 11 minutes ago

Description : OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In version 3.3.2, when reading a deep scanline image with a large sample count in reduceMemory mode, it is possible to crash a target application with a NULL pointer dereference in a write operation. This is fixed in version 3.3.3.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Coded Smorgasbord: High Strung

Chainguard launches trusted collection of verified JavaScript libraries

CData launches Connect AI to provide agents access to enterprise data sources

PostgreSQL 18 adds asynchronous I/O to improve performance

Distribution Release: Kali Linux 2025.3

Distribution Release: SysLinuxOS 13

Development Release: MX Linux 25 Beta 1

DistroWatch Weekly, Issue 1140

PHP 8.5.0 RC 1 available for testing

PHP 8.5.0 RC 1 available for testing

Terraform Code Generator Using Ollama and CodeGemma

Beyond Denial: How AI Concierge Services Can Transform Healthcare from Reactive to Proactive

FOSS Weekly #25.39: Kill Switch Phones, LMDE 7, Zorin OS 18 Beta, Polybar, Apt History and More Linux Stuff

FOSS Weekly #25.39: Kill Switch Phones, LMDE 7, Zorin OS 18 Beta, Polybar, Apt History and More Linux Stuff

Distribution Release: Kali Linux 2025.3

Distribution Release: SysLinuxOS 13

CVE-2025-4486 – iSourcecode Gym Management System SQL Injection Vulnerability

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

Critical RCE Vulnerability in Erlang/OTP SSH Server Impacts Multiple Cisco Products

Google Maps can identify and save places in your screenshots – here’s how

CVE-2025-53492 – Wikimedia Foundation Mediawiki – MintyDocs Extension Stored Cross-site Scripting (XSS)

CodeSOD: Stop Being So ####

CVE-2025-48073 – OpenEXR NULL Pointer Dereference Vulnerability

A Brief Introduction to Ruby

Best Chest Doctor Near Me | Parthiv Lung Care

CVE-2025-46658 – “4C Strategies Exonaut ExonautWeb Information Disclosure”

CVE-2025-4486 – iSourcecode Gym Management System SQL Injection Vulnerability

Related Posts