CNNVD-202508-1815 Information

CNNVD ID

CNNVD-202508-1815

Related CVE

CVE-2025-9012

• CNNVD Published: 2025-08-15

Description (Chinese)

PHPGurukul Online Shopping Portal Project是PHPGurukul公司的一个网上购物门户项目。 PHPGurukul Online Shopping Portal Project 2.0版本存在注入漏洞，该漏洞源于对文件shopping/bill-ship-addresses.php中参数billingpincode的错误操作导致SQL注入。

Description (English)

PHPGurukul Online Shoping Portal Project is a web-based shopping portal project for PHPGurukul. PHPGurukul Online Shopping Portal Project 2.0 has an injection loophole, which results from an error in the use of the parameter Billingpincode in the file Shoping/bill-ship-advices.php.

Hazard Level

Medium

Vulnerability Type

注入

Affected Vendor

PHPGurukul

Published

2025-08-15

Last Modified

2026-02-24

References

https://vuldb.com/?submit.629456 https://github.com/StrongDog23/myCVE/issues/2 https://vuldb.com/?ctiid.320043 https://vuldb.com/?id.320043 https://phpgurukul.com/ https://nvd.nist.gov/vuln/detail/CVE-2025-9012 https://access.redhat.com/security/cve/cve-2025-9012