PT-2026-45665 · Itsourcecode · Fleet Management System

Ooliveira

Published

2026-06-01

Updated

2026-06-02

CVE-2026-10302

CVSS v2.0

6.5

Medium

Vector

AV:N/AC:L/Au:S/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions itsourcecode Fees Management System version 1.0

Description A flaw in the /manage fee.php file allows for remote SQL injection, which is a technique where malicious SQL statements are inserted into entry fields for execution. This occurs through the manipulation of the ID argument within an unknown function of the specified file.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Special Elements Injection

SQL injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-74CWE-89

Related Identifiers

CVE-2026-10302

Affected Products

Fleet Management System

PT-2026-45665 · Itsourcecode · Fleet Management System

CVE-2026-10302

Weakness Enumeration

Related Identifiers

Affected Products

References · 8