CNNVD-202506-2897 Information
Jun 22, 2025
cve
CNNVD ID
CNNVD-202506-2897
Related CVE
- CNNVD Published: 2025-06-22
Description (Chinese)
Code-Projects Online Bidding System是Code-Projects开源的一个在线竞价系统。 Code-Projects Online Bidding System 1.0版本存在注入漏洞,该漏洞源于文件/login.php中参数User的错误操作导致SQL注入。
Description (English)
Code-Projects Online Bidding Systems is an online competitive system open to Code-Projects. Code-Projects Online Biding System Version 1.0 has an injection loophole, which results from the error of the argument User in the file/login.php, resulting in the SQL injection.
Hazard Level
Medium
Vulnerability Type
注入
Affected Vendor
Code-Projects
Published
2025-06-22
Last Modified
2026-02-24
References
https://code-projects.org/ https://github.com/Kristin5634487/cve/issues/2 https://vuldb.com/?ctiid.313575 https://vuldb.com/?submit.598882 https://vuldb.com/?id.313575 https://access.redhat.com/security/cve/cve-2025-6467
Share on: