Unknown · Itsourcecode Online Discussion Forum · CVE-2025-10033
**Name of the Vulnerable Software and Affected Versions**
itsourcecode Online Discussion Forum version 1.0
**Description**
A SQL injection issue exists in itsourcecode Online Discussion Forum 1.0. The issue affects an unknown function within the `/admin` file. Manipulation of the `Username` parameter can lead to SQL injection. The exploit has been publicly disclosed.
**Recommendations**
As a temporary workaround, consider restricting access to the `/admin` file to minimize the risk of exploitation.
Avoid using the `Username` parameter in the affected file until the issue is resolved.