CVE-2025-0873

Name of the Vulnerable Software and Affected Versions itsourcecode Tailoring Management System version 1.0

Description A critical issue was found in the "/customeredit.php" file, affecting an unknown functionality. The manipulation of the id, address, fullname, phonenumber, email, city, and comment arguments leads to SQL injection. This issue can be exploited remotely.

Recommendations For itsourcecode Tailoring Management System version 1.0, consider disabling access to the "/customeredit.php" file until a patch is available. Restrict the use of the id, address, fullname, phonenumber, email, city, and comment arguments in the affected file to minimize the risk of exploitation.