CNNVD-202508-1824 Information

Aug 15, 2025 cve

CNNVD ID

CNNVD-202508-1824

CVE-2025-9022

CNNVD Published: 2025-08-15

Description (Chinese)

SourceCodester Online Bank Management System是SourceCodester开源的一个在线银行管理系统。 SourceCodester Online Bank Management System 1.0及之前版本存在注入漏洞，该漏洞源于文件/bank/statements.php中参数email处理不当，导致SQL注入。

Description (English)

SourceCodester Online Bank Management System is an online banking management system that is an open source for ServiceCodester. SourceCodester Online Bank Management System 1.0 and previous versions had an injection loophole, which stemmed from the inappropriate handling of email, the parameter in document/bank/statements.php, which led to the injection of SQL.

Hazard Level

Medium

Vulnerability Type

注入

Affected Vendor

SourceCodester

Published

2025-08-15

Last Modified

2026-02-24

References

https://vuldb.com/?submit.631862 https://www.sourcecodester.com/ https://vuldb.com/?id.320087 https://vuldb.com/?ctiid.320087 https://nvd.nist.gov/vuln/detail/CVE-2025-9022 https://access.redhat.com/security/cve/cve-2025-9022

Patch

https://www.sourcecodester.com/php/15373/online-banking-management-system-php-free-source-code.html

Share on: