CNNVD-202509-1873 Information

Sep 14, 2025 cve

CNNVD ID

CNNVD-202509-1873

CVE-2025-10400

CNNVD Published: 2025-09-14

Description (Chinese)

SourceCodester Food Ordering Management System是SourceCodester开源的一个食品订购管理系统。 SourceCodester Food Ordering Management System 1.0版本存在SQL注入漏洞，该漏洞源于对文件/routers/ticket-message.php中参数ticket_id的错误操作，可能导致SQL注入攻击。

Description (English)

SourceCodester Food Ordering Management System is a food order management system that is an open source for ServiceCodester. SourceCodester Food Ordering Management System Version 1.0 contains an injection loophole in SQL, which stems from a mishandling of the parameter ticket id in document/routers/ticket-message.php, which may lead to an attack on SQL injection.

Hazard Level

High

Vulnerability Type

SQL注入

Affected Vendor

Sparkle Motion

Published

2025-09-14

Last Modified

2026-02-24

References

https://vuldb.com/?submit.646713 https://vuldb.com/?ctiid.323835 https://vuldb.com/?id.323835 https://www.sourcecodester.com/ https://github.com/lrjbsyh/CVE_Hunter/issues/12 https://access.redhat.com/security/cve/cve-2025-10400

Share on: