Janobe Inventory Management System 1.0
Approved changes feed: RSS · Atom
cpe:2.3:a:janobe:inventory_management_system:1.0:*:*:*:*:*:*:*
part: a version: 1.0 update: *
| Vendor | Janobe (958e97e2-37fb-58eb-baa2-792f3e424acf) |
|---|---|
| Product | Inventory Management System (aa2ff0c5-9608-5a1a-9776-8c0951298a5e) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2025-13257 |
vulnerable | 2026-06-03 14:58:45.770879 |
itsourcecode Inventory Management System index.php sql injection
HIGH (7.3)
A security vulnerability has been detected in itsourcecode Inventory Management System 1.0. The affected element is an unknown function of the file /admin/user/index.php?view=edit. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed publicly and may be used.
Published: 2025-11-17T01:32:06.953Z
Updated: 2025-11-17T18:25:07.056Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-13237 |
vulnerable | 2026-06-03 14:58:45.748322 |
itsourcecode Inventory Management System LogSignModal.PHP sql injection
HIGH (7.3)
A security flaw has been discovered in itsourcecode Inventory Management System 1.0. Affected is an unknown function of the file /LogSignModal.PHP. The manipulation of the argument U_USERNAME results in sql injection. The attack can be launched remotely. The exploit has been released to the public and may be exploited.
Published: 2025-11-16T05:02:06.469Z
Updated: 2025-11-17T18:59:36.030Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-13236 |
vulnerable | 2026-06-03 14:58:45.747730 |
itsourcecode Inventory Management System index.php sql injection
MEDIUM (6.3)
A vulnerability was identified in itsourcecode Inventory Management System 1.0. This impacts an unknown function of the file /admin/products/index.php?view=edit. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The exploit is publicly available and might be used.
Published: 2025-11-16T04:02:06.575Z
Updated: 2025-11-17T18:58:17.152Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-13235 |
vulnerable | 2026-06-03 14:58:45.747170 |
itsourcecode Inventory Management System login.php sql injection
HIGH (7.3)
A vulnerability was determined in itsourcecode Inventory Management System 1.0. This affects an unknown function of the file /admin/login.php. Executing manipulation of the argument user_email can lead to sql injection. It is possible to launch the attack remotely. The exploit has been publicly disclosed and may be utilized.
Published: 2025-11-16T03:32:06.363Z
Updated: 2025-11-17T18:57:06.721Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-13234 |
vulnerable | 2026-06-03 14:58:45.740376 |
itsourcecode Inventory Management System index.php sql injection
MEDIUM (6.3)
A vulnerability was found in itsourcecode Inventory Management System 1.0. The impacted element is an unknown function of the file /index.php?q=product. Performing manipulation of the argument PROID results in sql injection. It is possible to initiate the attack remotely. The exploit has been made public and could be used.
Published: 2025-11-16T03:02:06.655Z
Updated: 2026-01-07T16:53:52.920Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-13233 |
vulnerable | 2026-06-03 14:58:45.739978 |
itsourcecode Inventory Management System index.php sql injection
HIGH (7.3)
A vulnerability has been found in itsourcecode Inventory Management System 1.0. The affected element is an unknown function of the file /index.php?q=single-item. Such manipulation of the argument ID leads to sql injection. The attack may be performed from remote. The exploit has been disclosed to the public and may be used.
Published: 2025-11-16T02:32:07.009Z
Updated: 2025-11-17T15:35:30.465Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-13210 |
vulnerable | 2026-06-03 14:58:45.711285 |
itsourcecode Inventory Management System index.php sql injection
MEDIUM (4.7)
A security vulnerability has been detected in itsourcecode Inventory Management System 1.0. This impacts an unknown function of the file /admin/products/index.php?view=add. Such manipulation of the argument PROMODEL leads to sql injection. The attack may be performed from remote. The exploit has been disclosed publicly and may be used.
Published: 2025-11-15T19:02:06.506Z
Updated: 2025-11-17T15:56:31.660Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.