CNNVD-202506-2906 Information

CNNVD ID

CNNVD-202506-2906

Related CVE

CVE-2025-6473

• CNNVD Published: 2025-06-22

Description (Chinese)

Code-Projects School Fees Payment System是Code-Projects开源的一个学费支付系统。 Code-Projects School Fees Payment System 1.0版本存在代码注入漏洞，该漏洞源于文件/fees.php中参数transcation_remark的错误操作导致跨站脚本。

Description (English)

Code-Projects School Fees Payment Systems is a tuition payment system that is open to Code-Projects. The Code-Projects School Fees Payment System Version 1.0 contains a code-injection loophole, resulting from the error of the parameter transfer remark in the file/fees.php.

Hazard Level

High

Vulnerability Type

代码注入

Affected Vendor

Code-Projects

Published

2025-06-22

Last Modified

2026-02-24

References

https://vuldb.com/?id.313581 https://vuldb.com/?submit.599888 https://code-projects.org/ https://github.com/tu00/CVE/issues/17 https://vuldb.com/?ctiid.313581 https://access.redhat.com/security/cve/cve-2025-6473