CVE-2025-4363 – iSourcecode Gym Management System SQL Injection Vulnerability

May 6, 2025

CVE ID : CVE-2025-4363

Published : May 6, 2025, 4:15 p.m. | 3 hours, 19 minutes ago

Description : A vulnerability, which was classified as critical, has been found in itsourcecode Gym Management System 1.0. This issue affects some unknown processing of the file /ajax.php?action=end_membership. The manipulation of the argument rid leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4368 – Tenda AC8 Buffer Overflow Vulnerability

Next Article CVE-2025-45492 – Netgear EX8000 Command Injection Vulnerability

Highlights

CVE-2025-46823 – OpenMRS FHIR2 Privilege Escalation Vulnerability

May 29, 2025

CVE ID : CVE-2025-46823

Published : May 29, 2025, 6:15 p.m. | 3 hours, 18 minutes ago

Description : openmrs-module-fhir2 provides the FHIR REST API and related services for OpenMRS, an open medical records system. In versions of the FHIR2 module prior to 2.5.0, privileges were not always correctly checked, which means that unauthorized users may have been able to add or edit data they were not supposed to be able to. All implementers should update to FHIR2 2.5.0 or newer as soon as is feasible to receive a patch.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Coded Smorgasbord: High Strung

Chainguard launches trusted collection of verified JavaScript libraries

CData launches Connect AI to provide agents access to enterprise data sources

PostgreSQL 18 adds asynchronous I/O to improve performance

Distribution Release: Neptune 9.0

Distribution Release: Kali Linux 2025.3

Distribution Release: SysLinuxOS 13

Development Release: MX Linux 25 Beta 1

PHP 8.5.0 RC 1 available for testing

PHP 8.5.0 RC 1 available for testing

Terraform Code Generator Using Ollama and CodeGemma

Beyond Denial: How AI Concierge Services Can Transform Healthcare from Reactive to Proactive

Distribution Release: Neptune 9.0

Distribution Release: Neptune 9.0

FOSS Weekly #25.39: Kill Switch Phones, LMDE 7, Zorin OS 18 Beta, Polybar, Apt History and More Linux Stuff

Distribution Release: Kali Linux 2025.3

CVE-2025-4363 – iSourcecode Gym Management System SQL Injection Vulnerability

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

Beyond Provocative: How One AI Company’s Ad Campaign Betrays Humanity

CVE-2025-1493 – IBM Db2 Denial of Service

Critical Cisco ISE Flaw CVE-2025-20337 (CVSS 10.0) Allows Unauthenticated Root RCE – Patch Immediately

CVE-2025-5324 – TechPowerUp GPU-Z IOCTL Handler Memory Leak Vulnerability

CVE-2025-46823 – OpenMRS FHIR2 Privilege Escalation Vulnerability

What is Team as a Service? (TaaS Explained + Benefits, Use Cases and More)

Microsoft Probes MAPP Leak After Chinese Hackers Exploit SharePoint Flaws

Your Xbox can now store everything — if you sell a kidney first

CVE-2025-4363 – iSourcecode Gym Management System SQL Injection Vulnerability

Related Posts