CNNVD-202507-3341 Information

Jul 25, 2025 cve

CNNVD ID

CNNVD-202507-3341

CVE-2025-8165

CNNVD Published: 2025-07-25

Description (Chinese)

Code-Projects Food Ordering Review System是Code-Projects开源的一个食品订购审核系统。 Code-Projects Food Ordering Review System 1.0版本存在注入漏洞，该漏洞源于文件/admin/approve_reservation.php中参数occasion的错误操作导致SQL注入。

Description (English)

Code-Projects Food Ordering Review Systems is a food order audit system open to Code-Projects. The Code-Projects Food Ordering Review System Version 1.0 contains an injection loophole, which stems from the error of the parameter occasion in the document/admin/approve reservation.php, resulting in the SQL injection.

Hazard Level

High

Vulnerability Type

注入

Affected Vendor

Code-Projects

Published

2025-07-25

Last Modified

2026-02-24

References

https://code-projects.org/ https://github.com/ljfhhh/cve2/blob/main/cve-sql.pdf https://vuldb.com/?ctiid.317579 https://vuldb.com/?id.317579 https://vuldb.com/?submit.620631 https://access.redhat.com/security/cve/cve-2025-8165

Share on: