CNNVD-202507-2851 Information

CNNVD ID

CNNVD-202507-2851

Related CVE

CVE-2025-7951

• CNNVD Published: 2025-07-22

Description (Chinese)

Code-Projects Public Chat Room是Code-Projects开源的一个公共聊天室软件。 Code-Projects Public Chat Room 1.0版本存在代码注入漏洞，该漏洞源于对文件/send_message.php中参数chat_msg/your_name的错误操作导致跨站脚本攻击。

Description (English)

Code-Projects Public Chat Room is a public chat room software open to Code-Projects. The Code-Project Public Chat Room 1.0 contains a code-injection loophole, which results from an error in the chat msg/your name of the parameter in the document/send msage.php.

Hazard Level

Critical

Vulnerability Type

代码注入

Affected Vendor

Code-Projects

Published

2025-07-22

Last Modified

2026-02-24

References

https://github.com/BalanceLee/CVE/issues/6 https://vuldb.com/?submit.619358 https://code-projects.org/ https://vuldb.com/?ctiid.317097 https://vuldb.com/?id.317097 https://access.redhat.com/security/cve/cve-2025-7951 https://nvd.nist.gov/vuln/detail/CVE-2025-7951