CVE-2026-10257

Name of the Vulnerable Software and Affected Versions itsourcecode Content Management System version 1.0

Description A security flaw allows remote attackers to perform SQL injection, which is a technique used to manipulate a database by inserting malicious SQL code into a query. The issue occurs during the processing of the '/admin/update ss img.php' endpoint through the manipulation of the topic id parameter.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.