CNNVD-202508-3668 Information

Aug 30, 2025 cve

CNNVD ID

CNNVD-202508-3668

CVE-2025-9689

CNNVD Published: 2025-08-30

Description (Chinese)

SourceCodester Advanced School Management System是SourceCodester开源的一个先进的学校管理系统。 SourceCodester Advanced School Management System 1.0版本存在安全漏洞，该漏洞源于文件/index.php/stock/item_select中参数q的错误操作导致SQL注入。

Description (English)

SourceCodester Advanced School Management System is an advanced school management system for the Open Source of SourceCodester. The security loophole in version 1.0 of SourceCodester Advanced School Management System stems from the error of the parameterq in the document/index.php/stock/item select resulting in the injection of SQL.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

SourceCodester

Published

2025-08-30

Last Modified

2026-02-24

References

https://www.sourcecodester.com/ https://vuldb.com/?submit.638609 https://vuldb.com/?id.321901 https://vuldb.com/?ctiid.321901 https://github.com/1ithos/CVE/issues/1 https://access.redhat.com/security/cve/cve-2025-9689 https://nvd.nist.gov/vuln/detail/CVE-2025-9689

Patch

https://www.sourcecodester.com/php/14269/advanced-school-management-system-complete-features.html

Share on: