CNNVD-202506-1889 Information

CNNVD ID

CNNVD-202506-1889

Related CVE

CVE-2025-6123

• CNNVD Published: 2025-06-16

Description (Chinese)

Code-Projects Restaurant Order System是Code-Projects开源的一个餐厅订单系统。 Code-Projects Restaurant Order System 1.0版本存在注入漏洞，该漏洞源于对文件/payment.php中参数tabidNoti的错误操作导致SQL注入。

Description (English)

Code-Projects Restaurant Order System is a restaurant order system open to Code-Projects. Code-Projects Restaurant Order System Version 1.0 has an injection loophole, which results from an error in the tabid Noti parameter in the document/payment.php, resulting in the SQL injection.

Hazard Level

Medium

Vulnerability Type

注入

Affected Vendor

Code-Projects

Published

2025-06-16

Last Modified

2026-02-24

References

https://github.com/ez-lbz/poc/issues/1 https://vuldb.com/?id.312592 https://code-projects.org/ https://vuldb.com/?ctiid.312592 https://vuldb.com/?submit.592621 https://access.redhat.com/security/cve/cve-2025-6123