CVE-2025-4464 Information

Description

A vulnerability has been found in itsourcecode Gym Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /ajax.php?action=save_plan. The manipulation of the argument plan leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Reference

https://github.com/a25962208/cve/issues/2 https://github.com/a25962208/cve/issues/2 https://itsourcecode.com/ https://vuldb.com/?ctiid.308083 https://vuldb.com/?id.308083 https://vuldb.com/?submit.565990