Itsourcecode · Itsourcecode Open Source Job Portal · CVE-2025-10834
**Name of the Vulnerable Software and Affected Versions**
itsourcecode Open Source Job Portal version 1.0
**Description**
A flaw exists in itsourcecode Open Source Job Portal version 1.0 that allows for SQL injection. Manipulation of the `user email` parameter in the file `/jobportal/admin/login.php` can trigger this issue. The attack can be launched remotely. The exploit is publicly available.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.