CNNVD-202508-3571 Information

CNNVD ID

CNNVD-202508-3571

Related CVE

CVE-2025-9651

• CNNVD Published: 2025-08-29

Description (Chinese)

Chatbox是Shafqat Hasan个人开发者的一个聊天软件。 Chatbox存在安全漏洞，该漏洞源于文件/chat.php中参数user_id的错误操作导致SQL注入。

Description (English)

Chatbox is a chat software for Shafqat Hasan personal developers. Chatbox has a security loophole, which stems from the error of the parameter user id in the file/chat.php, resulting in the injection of SQL.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-08-29

Last Modified

2026-02-24

References

https://www.websecurityinsights.my.id/2025/08/chatbox-10-chatphpuserid-sql-injection.html https://vuldb.com/?submit.636884 https://vuldb.com/?id.321859 https://vuldb.com/?ctiid.321859 https://nvd.nist.gov/vuln/detail/CVE-2025-9651 https://access.redhat.com/security/cve/cve-2025-9651