CNNVD-202508-3655 Information

Aug 30, 2025 cve

CNNVD ID

CNNVD-202508-3655

CVE-2025-9690

CNNVD Published: 2025-08-30

Description (Chinese)

SourceCodester Advanced School Management System是SourceCodester开源的一个先进的学校管理系统。 SourceCodester Advanced School Management System 1.0版本存在安全漏洞，该漏洞源于文件/index.php/stock/vendordetails中参数ID的错误操作导致SQL注入。

Description (English)

SourceCodester Advanced School Management System is an advanced school management system for the Open Source of SourceCodester. The security loophole in version 1.0 of SourceCodester Advanced School Management System stems from the error of the parameter ID in the file/index.php/stock/vendordetails resulting in the injection of SQL.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

SourceCodester

Published

2025-08-30

Last Modified

2026-02-24

References

https://www.sourcecodester.com/ https://vuldb.com/?id.321902 https://vuldb.com/?ctiid.321902 https://github.com/1ithos/CVE/issues/1 https://access.redhat.com/security/cve/cve-2025-9690 https://nvd.nist.gov/vuln/detail/CVE-2025-9690

Patch

https://www.sourcecodester.com/php/14269/advanced-school-management-system-complete-features.html

Share on: