CVE-2025-6351 – iSourcecode Employee Record Management System SQL Injection

June 20, 2025

CVE ID : CVE-2025-6351

Published : June 20, 2025, 4:15 p.m. | 1 hour, 9 minutes ago

Description : A vulnerability was found in itsourcecode Employee Record Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /editprofile.php. The manipulation of the argument emp1name leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6347 – Code-Projects Responsive Blog Cross-Site Scripting Vulnerability

Next Article CVE-2025-45890 – Novel Plus Directory Traversal Code Execution Vulnerability

This week in AI dev tools: Gemini 2.5 Pro and Flash GA, GitHub Copilot Spaces, and more (June 20, 2025)

Gemini 2.5 Pro and Flash are generally available and Gemini 2.5 Flash-Lite preview is announced

CSS Cascade Layers Vs. BEM Vs. Utility Classes: Specificity Control

IBM launches new integration to help unify AI security and governance

One of World of Warcraft’s deadliest entities makes a world-shattering return after nearly 20 years — and he’s city-sized

It feels like Blizzard has abandoned Diablo 2: Resurrected — but there’s one way to keep it alive for years to come

Steam’s performance tracking tool is becoming more like the Steam Deck’s — you can try it out right now

Borderlands 4 is killing off a tired “FOMO” trend — I hope other developers follow suit

Dr. Axel’s JavaScript flashcards

Dr. Axel’s JavaScript flashcards

Syntax-Highlight – Custom Element For Syntax Highlighting Content

WelsonJS – Build a Windows app on the Windows built-in JavaScript engine

One of World of Warcraft’s deadliest entities makes a world-shattering return after nearly 20 years — and he’s city-sized

One of World of Warcraft’s deadliest entities makes a world-shattering return after nearly 20 years — and he’s city-sized

It feels like Blizzard has abandoned Diablo 2: Resurrected — but there’s one way to keep it alive for years to come

Steam’s performance tracking tool is becoming more like the Steam Deck’s — you can try it out right now

CVE-2025-6351 – iSourcecode Employee Record Management System SQL Injection

Former Black Basta Members Use Microsoft Teams and Python Scripts in 2025 Attacks

ConnectWise to Rotate ScreenConnect Code Signing Certificates Due to Security Risks

Will super-smart AI be attacking us anytime soon?

Summer Game Fest 2025 & Xbox Games Showcase LIVE: Mortal Shell 2, body horror ‘Ill’, Onimusha, and RESIDENT EVIL 9 HAS BEEN REVEALED [ENDED]

Laravel’s AsHtmlString Cast for Elegant HTML Attribute Management

CVE-2025-49882 – CubeWP Framework Cross-site Scripting

KDE Plasma 6.3.5 Update Available to Kubuntu Users

CVE-2025-20273 – Cisco Unified Intelligent Contact Management Enterprise Cross-Site Scripting Vulnerability

Cisco SD-WAN Vulnerabilities: PoC Exists for XSS and Filter Bypass

CVE-2025-5190 – WordPress Browse As Plugin Authentication Bypass Vulnerability

CVE-2025-6351 – iSourcecode Employee Record Management System SQL Injection

Related Posts