CNNVD-202507-3615 Information

Jul 29, 2025 cve

CNNVD ID

CNNVD-202507-3615

CVE-2025-51970

CNNVD Published: 2025-07-29

Description (Chinese)

PuneethReddyHc Online Shopping System Advanced是印度Puneeth Reddy HC个人开发者的一个开源在线购物系统。 PuneethReddyHc Online Shopping System Advanced 1.0版本存在安全漏洞，该漏洞源于keyword参数清理不当，可能导致SQL注入攻击。

Description (English)

PunjabReddyHc Online Shoping Systems Advanced is an open-source online shopping system for personal developers of Punjab Reddy HC in India. There is a security loophole in version 1.0 of PunetethReddyHc Online Shoping Systems Advanced, which stems from the miscleaning of the Keyword parameters, which could lead to an attack by SQL.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-07-29

Last Modified

2026-02-24

References

https://gist.github.com/im4x/10738ee219d69024387737fb14cdba9f https://github.com/jairajparyani/CVE-s/blob/main/CVE-2025-51970%20%E2%80%93%20SQL%20Injection%20Vulnerability%20in%20Online%20Shopping%20System%20Advanced https://nvd.nist.gov/vuln/detail/CVE-2025-51970 https://access.redhat.com/security/cve/cve-2025-51970

Share on: