CNNVD-202507-641 Information
Jul 07, 2025
cve
CNNVD ID
CNNVD-202507-641
Related CVE
- CNNVD Published: 2025-07-07
Description (Chinese)
BoyunCMS是中国博云(Boyun)公司的一款企业内容管理系统。 BoyunCMS 1.4.20及之前版本存在安全漏洞,该漏洞源于文件application/update/controller/Server.php中参数phone处理不当,可能导致SQL注入。
Description (English)
BoyunCMS is an enterprise content management system for Boyun, China. BoyunCMS 1.4.20 and previous versions contain a security loophole, which stems from the inappropriate handling of the parameter phone in document Application/update/controller/Server.php, which may lead to the injection of SQL.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
博云
Published
2025-07-07
Last Modified
2026-02-24
References
https://note-hxlab.wetolink.com/share/sEjaSsXWRNz1 https://vuldb.com/?ctiid.315016 https://vuldb.com/?id.315016 https://vuldb.com/?submit.604401
Patch
https://www.boyunweb.cn/pc/index57/index/classid/26/id/42.html
Share on: