Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
6.9
itsourcecode Document Management System Exposes Data to Malicious Code
CVE-2026-3069
Summary
A security vulnerability in itsourcecode Document Management System 1.0 makes it possible for hackers to inject malicious code into the system, potentially accessing sensitive information. This could lead to unauthorized access and data theft. Upgrade to a patched version of the software to protect your data.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| admerc | document_management_system | 1.0 | – |
Original title
A security vulnerability has been detected in itsourcecode Document Management System 1.0. Affected is an unknown function of the file /edtlbls.php. The manipulation of the argument field1 leads to...
Original description
A security vulnerability has been detected in itsourcecode Document Management System 1.0. Affected is an unknown function of the file /edtlbls.php. The manipulation of the argument field1 leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed publicly and may be used.
nvd CVSS2.0
7.5
nvd CVSS3.1
9.8
nvd CVSS4.0
6.9
Vulnerability type
CWE-74
Injection
CWE-89
SQL Injection
- https://vuldb.com/?id.347424 Third Party Advisory VDB Entry
- https://github.com/ltranquility/cve_submit/issues/5 Exploit Issue Tracking Mitigation Third Party Advisory
- https://itsourcecode.com/ Product
- https://vuldb.com/?ctiid.347424 Permissions Required VDB Entry
- https://vuldb.com/?submit.757746 Third Party Advisory VDB Entry
Published: 24 Feb 2026 · Updated: 12 Mar 2026 · First seen: 6 Mar 2026