CVE-2025-4300 – iSourcecode Content Management System SQL Injection Vulnerability

May 5, 2025

CVE ID : CVE-2025-4300

Published : May 6, 2025, 12:15 a.m. | 3 hours, 19 minutes ago

Description : A vulnerability classified as critical has been found in itsourcecode Content Management System 1.0. Affected is an unknown function of the file /search_list.php. The manipulation of the argument Search leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-2509 – ChromeOS Virglrenderer Out-of-Bounds Read VM Escape

Next Article CVE-2025-4299 – Tenda AC1206 Buffer Overflow Vulnerability

Highlights

CVE-2025-5032 – Campcodes Online Shopping Portal SQL Injection Vulnerability

May 21, 2025

CVE ID : CVE-2025-5032

Published : May 21, 2025, 5:15 p.m. | 3 hours, 26 minutes ago

Description : A vulnerability classified as critical has been found in Campcodes Online Shopping Portal 1.0. Affected is an unknown function of the file /admin/edit-category.php. The manipulation of the argument Category leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

10 Top Node.js Development Companies for Enterprise-Scale Projects (2025-2026 Ranked & Reviewed)

12 Must-Know Cost Factors When Hiring Node.js Developers for Your Enterprise

Mirantis reveals Lens Prism, an AI copilot for operating Kubernetes clusters

Avoid these common platform engineering mistakes

Microsoft Gaming studios head Matt Booty says “overall portfolio strategy is unchanged” — with more than 40 games in production

Capcom reports that its Steam game sales have risen massively — despite flagship titles like Monster Hunter Wilds receiving profuse backlash from PC players

Cloudflare is fighting to safeguard “the future of the web itself” — standing directly in the way of leading AI firms

Microsoft reportedly lacks the know-how to fully leverage OpenAI’s tech — despite holding IP rights

Laravel in the First Half of 2025

Laravel in the First Half of 2025

PHP 8.5.0 Alpha 1 available for testing

Recording cross browser compatible media

GOnnect – easy to use VoIP client

GOnnect – easy to use VoIP client

Gnuinos – spin of Devuan Linux

5 Best Free and Open Source Backend Electronic Circuit Simulators

CVE-2025-4300 – iSourcecode Content Management System SQL Injection Vulnerability

CVE-2025-38221 – Linux Kernel ext4 Out-of-Bounds Punch Offset Vulnerability

CVE-2025-38222 – Linux ext4 Inline Data Overflow

CVE-2025-32886 – goTenna Information Disclosure

Fuel your creativity with new generative media models and tools

CVE-2025-52724 – BoldThemes Amwerk Object Injection Vulnerability

CVE-2025-52207 – MikoPBX PHP File Upload Vulnerability

CVE-2025-5032 – Campcodes Online Shopping Portal SQL Injection Vulnerability

Rnote 0.12 Released with Improved Linux Note-Taking Features

Microsoft Edge is killing off Wallet feature name on Windows 11

Anthropic launches Claude for Education, an AI to help students think critically

CVE-2025-4300 – iSourcecode Content Management System SQL Injection Vulnerability

Related Posts