top of page
perceptive_background_267k.jpg

A vulnerability was found in itsourcecode Construction Management System 1.0. This issue affects some unknown processing of the file /locations.php. Performing …

Published:

26 april 2026 om 22:00:00

Alert date:

27 april 2026 om 03:01:20

Source:

nvd.nist.gov

Click to open the original link from this advisory

Web Technologies, Enterprise Applications

A SQL injection vulnerability has been discovered in itsourcecode Construction Management System version 1.0. The vulnerability affects the /locations.php file through manipulation of the address parameter. The flaw allows remote attackers to execute SQL injection attacks. Public exploits are available, making this vulnerability immediately exploitable. The issue has been assigned CVE-2026-7075 and poses a high security risk.

Technical details

Mitigation steps:

Affected products:

itsourcecode Construction Management System 1.0

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2026-7075
https://github.com/Beatriz-ai-boop/cve/issues/4
https://itsourcecode.com/
https://vuldb.com/submit/799545
https://vuldb.com/vuln/359650
https://vuldb.com/vuln/359650/cti

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Deze website toont informatie afkomstig van externe bronnen; Perceptive aanvaardt geen verantwoordelijkheid voor de juistheid, volledigheid of actualiteit van deze informatie.

bottom of page