CNNVD-202507-1877 Information

CNNVD ID

CNNVD-202507-1877

Related CVE

CVE-2025-7607

• CNNVD Published: 2025-07-14

Description (Chinese)

Code-Projects Simple Shopping Cart是Code-Projects开源的一个简单购物车系统。 Code-Projects Simple Shopping Cart 1.0版本存在注入漏洞，该漏洞源于文件/Customers/save_order.php中参数order_price的错误操作导致SQL注入。

Description (English)

Code-Projects Simple Shopping Cart is a simple shopping car system open to Code-Projects. The Code-Projects Simple Shoping Cart 1.0 contains an injection loophole, which results from the error of the parameter order price in the document/Customers/save order.php.

Hazard Level

Medium

Vulnerability Type

注入

Affected Vendor

Code-Projects

Published

2025-07-14

Last Modified

2026-02-24

References

https://code-projects.org/ https://github.com/zzb1388/cve/issues/20 https://vuldb.com/?id.316307 https://vuldb.com/?ctiid.316307 https://vuldb.com/?submit.615358 https://access.redhat.com/security/cve/cve-2025-7607