Another SQL Injection in SLIMS 9.6.1 (CVE-2025-26200)

Well, hello Broccolitos! This is my second article about a SLIMS vulnerability that I found in January 2025.This vulnerability was found in /admin/modules/reporting/customs/visitor_report_day.php at the "month" parameter.Like...

SQL Injection Vulnerability in Senayan SLiMS 9.6.1 Bulian (CVE-2025-22980)

A SQL Injection vulnerability was found in the tempLoanID parameter on the /admin/modules/circulation/loan.php page of the Circulation module. This vulnerability can be exploited by an authenticated admin user to execute...