CNNVD-202506-2921 Information
Jun 22, 2025
cve
CNNVD ID
CNNVD-202506-2921
Related CVE
- CNNVD Published: 2025-06-22
Description (Chinese)
itsourcecode Agri-Trading Online Shopping System是itsourcecode开源的一个在线购物系统。 itsourcecode Agri-Trading Online Shopping System 1.0版本存在注入漏洞,该漏洞源于对文件/transactionsave.php中参数del的错误操作导致SQL注入。
Description (English)
ItsourcecodeAgri-TranstingOnlineSHoppingSystem is an online shopping system open to accesscode. Its sourcecodeAgri-TrackingOnlineSHopping System Version 1.0 has an injection loophole, which results from an error in the use of parameter del in the document/transactions Save.php.
Hazard Level
Medium
Vulnerability Type
注入
Affected Vendor
itsourcecode
Published
2025-06-22
Last Modified
2026-02-24
References
https://github.com/ltranquility/CVE/issues/13 https://vuldb.com/?id.313600 https://vuldb.com/?submit.601190 https://itsourcecode.com/ https://vuldb.com/?ctiid.313600 https://access.redhat.com/security/cve/cve-2025-6489
Share on: