A vulnerability identified as critical has been detected in itsourcecode Content Management System 1.0 . Impacted is an unknown function of the file /admin/add_sub_topic.php . This manipulation of the argument topic_id causes sql injection. This vulnerability is tracked as CVE-2026-10258 . The attack is possible to be carried out remotely. Moreover, an exploit is present.