CNNVD-202509-1845 Information

Sep 14, 2025 cve

CNNVD ID

CNNVD-202509-1845

CVE-2025-10409

CNNVD Published: 2025-09-14

Description (Chinese)

SourceCodester Student Grading System是SourceCodester开源的一个学生评分系统。 SourceCodester Student Grading System 1.0版本存在SQL注入漏洞，该漏洞源于对文件/rms.php中参数fname的错误操作，可能导致SQL注入攻击。

Description (English)

ServiceCodester Grading Systems is an open-source student rating system for ServiceCodester. The sourceCodester Modent Grading System Version 1.0 contains an injection loophole in SQL, which results from an error in the fname of the parameter in the document/rms.php, which could lead to an attack on SQL injection.

Hazard Level

High

Vulnerability Type

SQL注入

Affected Vendor

Sparkle Motion

Published

2025-09-14

Last Modified

2026-02-24

References

https://github.com/qcycop0101-hash/CVE/issues/5 https://vuldb.com/?id.323843 https://www.sourcecodester.com/ https://vuldb.com/?ctiid.323843 https://vuldb.com/?submit.646913 https://access.redhat.com/security/cve/cve-2025-10409

Share on: