CNNVD-202509-2563 Information

CNNVD ID

CNNVD-202509-2563

Related CVE

CVE-2025-56697

• CNNVD Published: 2025-09-16

Description (Chinese)

Kashipara Computer Base Test project in PHP是Kashipara公司的一个Web应用。 Kashipara Computer Base Test project in PHP v1.0版本存在安全漏洞，该漏洞源于对文件/users/adminpanel/admin/home.php中参数smyFeedbacks清理不足，可能导致存储型跨站脚本攻击。

Description (English)

Kashipara Company Base Test project in PHP is a Web application of Kashipara. The security gap in version Kashipara Company Base Project in PHP v1.0 stems from the inadequate clean-up of the smyFeedbacks parameters in the file/user/adminpanel/admin/home.php, which may result in a storage-type cross-station script attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Kashipara

Published

2025-09-16

Last Modified

2026-02-24

References

https://github.com/scriptjacker/CVE/tree/main/Kashipara/Computer-Base-Test https://access.redhat.com/security/cve/cve-2025-56697