SQL Injection Vulnerability in itsourcecode Tailoring Management System
CVE-2025-0948
5.3MEDIUM
What is CVE-2025-0948?
A vulnerability exists in the itsourcecode Tailoring Management System 1.0 due to improper handling of the 'incid' argument in the incview.php file. This flaw allows attackers to execute arbitrary SQL commands via a crafted request, potentially compromising the integrity of the database. As the exploit can be initiated remotely, it exposes systems to significant risks, and it has been publicly disclosed, making prompt remediation imperative for users.
Affected Version(s)
Tailoring Management System 1.0