CNNVD-202506-3388 Information
Jun 27, 2025
cve
CNNVD ID
CNNVD-202506-3388
Related CVE
- CNNVD Published: 2025-06-27
Description (Chinese)
bicycleSharingServer是中国huija个人开发者的一个共享单车JavaWEB后台。 bicycleSharingServer存在注入漏洞,该漏洞源于AdminController.java文件中searchAdminMessageShow函数对Title参数操作不当,可能导致SQL注入攻击。
Description (English)
BicycleSharingServer is a shared bicycle behind JavaWEB, a personal developer in Huija, China. There is an injection loophole in BicycleSharingServer, which originates from the SearchAdminMessageShow function in the AdminController.java document, which misoperates on Title parameters and may lead to an attack on SQL.
Hazard Level
High
Vulnerability Type
注入
Affected Vendor
Live Support
Published
2025-06-27
Last Modified
2026-02-24
References
https://github.com/huija/bicycleSharingServer/issues/6 https://vuldb.com/?ctiid.314047 https://vuldb.com/?id.314047 https://vuldb.com/?submit.598164
Share on: