CVE-2026-10256

Description

A vulnerability was identified in itsourcecode Content Management System 1.0. This vulnerability affects unknown code of the file /save_comment.php. The manipulation of the argument Name leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.

References

• https://github.com/wsjjllk/cve/issues/1
• https://itsourcecode.com/
• https://vuldb.com/cve/CVE-2026-10256
• https://vuldb.com/submit/824155
• https://vuldb.com/vuln/367536