📄 Description (English)
A weakness has been identified in itsourcecode Content Management System 1.0. Impacted is an unknown function of the file /admin/add_sub_topic.php. This manipulation of the argument topic_id causes sql injection. The attack is possible to be carried out remotely. The exploit has been made available to the public and could be used for attacks.
🤖 AI Executive Summary
CVE-2026-10258 is a SQL injection vulnerability in itsourcecode CMS 1.0 affecting the /admin/add_sub_topic.php endpoint through the topic_id parameter. With a CVSS score of 6.3 and publicly disclosed exploit code, this vulnerability allows remote attackers to execute arbitrary SQL queries, potentially leading to unauthorized data access, modification, or deletion. The absence of available patches necessitates immediate compensating controls and monitoring.
📄 Description (Arabic)
🤖 AI Intelligence Analysis Analyzed: Jun 1, 2026 16:49
🇸🇦 Saudi Arabia Impact Assessment
Saudi organizations using itsourcecode CMS 1.0 face significant risk, particularly in government agencies, educational institutions, and small-to-medium enterprises managing sensitive content. Government entities under NCA oversight and organizations handling citizen data are at elevated risk. The vulnerability could enable attackers to exfiltrate confidential information, modify official content, or establish persistence. Healthcare organizations and financial services using this CMS would face compliance violations under SAMA CSF and NCA ECC 2024.
🏢 Affected Saudi Sectors
Government and Public Administration
Education and Universities
Healthcare
Small and Medium Enterprises
Content Publishing and Media
Local Government Authorities
🎯 MITRE ATT&CK Techniques
⚖️ Saudi Risk Score (AI)
7.2
/ 10.0
🔧 Remediation Steps (English)
IMMEDIATE ACTIONS:
1. Identify all instances of itsourcecode CMS 1.0 in your environment and isolate affected systems from production networks if possible
2. Restrict access to /admin/add_sub_topic.php to authorized administrators only using WAF rules or network ACLs
3. Implement input validation: sanitize and parameterize all topic_id inputs using prepared statements
4. Enable SQL error suppression to prevent information disclosure
COMPENSATING CONTROLS:
5. Deploy Web Application Firewall (WAF) rules to block SQL injection patterns in topic_id parameter (e.g., blocking single quotes, UNION, SELECT keywords)
6. Implement database-level access controls: restrict CMS database user privileges to minimum required permissions
7. Enable comprehensive logging and alerting for SQL errors and unusual database queries
8. Conduct immediate code review of /admin/add_sub_topic.php and similar admin functions
DETECTION:
9. Monitor for SQL injection indicators: error-based responses, time-based delays, UNION-based queries in topic_id parameter
10. Alert on failed SQL statements and database access anomalies
11. Review database audit logs for unauthorized queries or data access patterns
LONG-TERM:
12. Migrate to patched version immediately upon availability or consider alternative CMS solutions
13. Implement code review and security testing in development lifecycle
🔧 خطوات المعالجة (العربية)
الإجراءات الفورية:
1. حدد جميع حالات itsourcecode CMS 1.0 في بيئتك وعزل الأنظمة المتأثرة عن شبكات الإنتاج إن أمكن
2. قيد الوصول إلى /admin/add_sub_topic.php للمسؤولين المصرح لهم فقط باستخدام قواعد WAF أو قوائم التحكم في الوصول
3. طبق التحقق من المدخلات: قم بتنظيف وتحديد معاملات topic_id باستخدام العبارات المحضرة
4. فعّل قمع أخطاء SQL لمنع الكشف عن المعلومات
الضوابط التعويضية:
5. نشر قواعد جدار حماية تطبيقات الويب (WAF) لحجب أنماط حقن SQL في معامل topic_id
6. طبق التحكم في الوصول على مستوى قاعدة البيانات: قيد امتيازات مستخدم قاعدة بيانات CMS
7. فعّل التسجيل الشامل والتنبيهات لأخطاء SQL والاستعلامات غير العادية
8. أجرِ مراجعة فورية للكود في /admin/add_sub_topic.php والوظائف الإدارية المماثلة
الكشف:
9. راقب مؤشرات حقن SQL: الاستجابات القائمة على الأخطاء والتأخيرات والاستعلامات
10. نبّه على فشل العبارات والشذوذ في الوصول إلى قاعدة البيانات
11. راجع سجلات تدقيق قاعدة البيانات
المدى الطويل:
12. انتقل إلى نسخة مصححة فور توفرها أو فكر في حلول CMS بديلة
13. طبق مراجعة الكود واختبار الأمان في دورة التطوير
📋 Regulatory Compliance Mapping
🟢 NCA ECC 2024
A.14.2.1 - Secure development policy and procedures
A.14.2.5 - Secure development environment
A.12.6.1 - Management of technical vulnerabilities
A.12.2.1 - Monitoring of system use
🔵 SAMA CSF
ID.RA-1 - Asset management and vulnerability identification
PR.DS-6 - Data protection and integrity
DE.CM-1 - Detection and analysis of anomalies
RS.MI-1 - Incident response and mitigation
🟡 ISO 27001:2022
A.12.6.1 - Management of technical vulnerabilities
A.14.2.1 - Secure development policy
A.14.2.5 - Secure development environment
A.12.2.1 - Monitoring of system use
🟣 PCI DSS v4.0.1
6.2 - Security patches and updates
6.5.1 - Injection flaws prevention
10.2 - User access logging and monitoring
🔗 References & Sources 6
🔗
🔗
🔗
🔗
🔗
🔗
https://github.com/ltranquility/vuln_submit/issues/5
cna@vuldb.com
https://itsourcecode.com/
cna@vuldb.com
https://vuldb.com/cve/CVE-2026-10258
cna@vuldb.com
https://vuldb.com/submit/824522
cna@vuldb.com
https://vuldb.com/vuln/367538
cna@vuldb.com
https://vuldb.com/vuln/367538/cti
cna@vuldb.com