CNNVD-202506-1974 Information

Jun 17, 2025 cve

CNNVD ID

CNNVD-202506-1974

CVE-2025-6160

CNNVD Published: 2025-06-17

Description (Chinese)

SourceCodester Client Database Management System是SourceCodester开源的一个客户端数据库管理系统。 SourceCodester Client Database Management System 1.0版本存在注入漏洞，该漏洞源于对文件/user_customer_create_order.php中参数user_id的错误操作导致SQL注入。

Description (English)

ServiceCodester Clinic Data Management System is an open-source client database management system for ServiceCodester. SourceCodesterClientDatabase Management System Version 1.0 has an injection loophole, which results from an error in the performance of the parameter user id in the document/user cute order.php.

Hazard Level

Medium

Vulnerability Type

注入

Affected Vendor

SourceCodester

Published

2025-06-17

Last Modified

2026-02-24

References

https://github.com/yitianweiming/cve/issues/1 https://vuldb.com/?submit.593216 https://vuldb.com/?id.312635 https://www.sourcecodester.com/ https://vuldb.com/?ctiid.312635 https://nvd.nist.gov/vuln/detail/CVE-2025-6160 https://access.redhat.com/security/cve/cve-2025-6160

Share on: