CVE-2025-12607 | itsourcecode Online Loan Management System 1.0 /manage_payment.php ID sql injection

A vulnerability was found in itsourcecode Online Loan Management System 1.0. It has been declared as critical. Impacted is an unknown function of the file /manage_payment.php. Such manipulation of the argument ID leads to sql injection.

This vulnerability is documented as CVE-2025-12607. The attack can be executed remotely. Additionally, an exploit exists.VulDB Recent EntriesRead More