CNNVD-202506-2978 Information

CNNVD ID

CNNVD-202506-2978

Related CVE

CVE-2025-6502

• CNNVD Published: 2025-06-23

Description (Chinese)

Code-Projects Inventory Management System是Code-Projects开源的一个库存管理系统。 Code-Projects Inventory Management System 1.0版本存在安全漏洞，该漏洞源于/php_action/changePassword.php文件中user_id参数处理不当导致SQL注入。

Description (English)

Code-Projects Industry Systems is a stock management system for the open source of Code-Projects. There is a security loophole in version 1.0 of Code-Projects Inventory Management System, which originates from the mishandling of user id parameters in /php action/changePassword.php file, resulting in the injection of SQL.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Code-Projects

Published

2025-06-23

Last Modified

2026-02-24

References

https://access.redhat.com/security/cve/cve-2025-6502 https://nvd.nist.gov/vuln/detail/CVE-2025-6502