Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
2.1
CVE-2026-10568: itsourcecode Fees Management System 1.0 SQL Injection via ID Parameter
CVE-2026-10568
Summary
The itsourcecode Fees Management System 1.0 contains a security flaw that allows an attacker to access sensitive data by manipulating the ID parameter in the /manage_payment.php file. This could lead to unauthorized access to payment information. To protect your system, update to a newer version of the software or apply the necessary security patches.
Original title
A vulnerability was detected in itsourcecode Fees Management System 1.0. Affected is an unknown function of the file /manage_payment.php. The manipulation of the argument ID results in sql injectio...
Original description
A vulnerability was detected in itsourcecode Fees Management System 1.0. Affected is an unknown function of the file /manage_payment.php. The manipulation of the argument ID results in sql injection. The attack may be launched remotely. The exploit is now public and may be used.
nvd CVSS2.0
6.5
nvd CVSS3.1
6.3
nvd CVSS4.0
2.1
Vulnerability type
CWE-74
Injection
CWE-89
SQL Injection
Published: 2 Jun 2026 · Updated: 2 Jun 2026 · First seen: 2 Jun 2026