CNNVD-202508-1469 Information

Aug 13, 2025 cve

CNNVD ID

CNNVD-202508-1469

CVE-2025-8928

CNNVD Published: 2025-08-13

Description (Chinese)

Code-Projects Medical Store Management System是Code-Projects开源的一个药店管理系统。 Code-Projects Medical Store Management System 1.0版本存在注入漏洞，该漏洞源于对文件UpdateMedicines.java中参数productNameTxt的错误操作导致SQL注入攻击。

Description (English)

Code-Projects Medical Store Management Systems is a pharmacy management system that is open to Code-Projects. There is an injection loophole in version 1.0 of Code-Projects Medical Store Management System, which results from an attack on SQL injection as a result of an error in the parameter program nameTxt in the UpdateMedicines.java file.

Hazard Level

High

Vulnerability Type

注入

Affected Vendor

Code-Projects

Published

2025-08-13

Last Modified

2026-02-24

References

https://code-projects.org/ https://vuldb.com/?ctiid.319887 https://vuldb.com/?id.319887 https://vuldb.com/?submit.631661 https://www.yuque.com/gongzi-jsnek/xb2q3a/ktz2n3ywyt85zct3#vulnerability-details-and-poc https://www.yuque.com/gongzi-jsnek/xb2q3a/ktz2n3ywyt85zct3?singleDoc

Share on: