CVE-2025-4363 Information

Description

A vulnerability which was classified as critical has been found in itsourcecode Gym Management System 1.0. This issue affects some unknown processing of the file /ajax.php?action=end_membership. The manipulation of the argument rid leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Reference

https://github.com/arpcyber2/CVE/issues/2 https://github.com/arpcyber2/CVE/issues/2 https://itsourcecode.com/ https://vuldb.com/?ctiid.307487 https://vuldb.com/?id.307487 https://vuldb.com/?submit.564759