A vulnerability was identified in itsourcecode Apartment Management System 1.0. This impacts an unknown function of the file /o_dashboard/rented_all_info.php. Such manipulation of the argument uid leads to sql injection. It is possible to launch the attack remotely. The exploit is publicly available and might be used.
References
| Link | Resource |
|---|---|
| https://github.com/zzb1388/cve/issues/54 | Exploit Third Party Advisory Issue Tracking |
| https://itsourcecode.com/ | Product |
| https://vuldb.com/?ctiid.321771 | Permissions Required |
| https://vuldb.com/?id.321771 | Third Party Advisory VDB Entry |
| https://vuldb.com/?submit.636363 | Third Party Advisory VDB Entry |
| https://github.com/zzb1388/cve/issues/54 | Exploit Third Party Advisory Issue Tracking |
Configurations
History
02 Sep 2025, 17:33
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://github.com/zzb1388/cve/issues/54 - Exploit, Third Party Advisory, Issue Tracking | |
| References | () https://itsourcecode.com/ - Product | |
| References | () https://vuldb.com/?ctiid.321771 - Permissions Required | |
| References | () https://vuldb.com/?id.321771 - Third Party Advisory, VDB Entry | |
| References | () https://vuldb.com/?submit.636363 - Third Party Advisory, VDB Entry | |
| First Time |
Admerc apartment Management System
Admerc |
|
| CPE | cpe:2.3:a:admerc:apartment_management_system:1.0:*:*:*:*:*:*:* |
29 Aug 2025, 15:15
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://github.com/zzb1388/cve/issues/54 - |
29 Aug 2025, 00:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-08-29 00:15
Updated : 2025-09-02 17:33
NVD link : CVE-2025-9597
Mitre link : CVE-2025-9597
CVE.ORG link : CVE-2025-9597
JSON object : View
Products Affected
admerc
- apartment_management_system