CNNVD-202509-2711 Information
CNNVD ID
CNNVD-202509-2711
Related CVE
- CNNVD Published: 2025-09-17
Description (Chinese)
itsourcecode Web-Based Internet Laboratory是itsourcecode开源的一个网络实验室软件。 itsourcecode Web-Based Internet Laboratory 1.0版本存在SQL注入漏洞,该漏洞源于对文件login.php中参数user_email的错误操作,可能导致SQL注入攻击。
Description (English)
Its sourcecode Web-Based Internet Laboratory is a web-based lab software that is open to access. Its sourcecode Web-Based Internet Laboratory Version 1.0 contains an injection loophole in SQL, which stems from an error in the parameter user email in document login.php, which could lead to an attack on SQL injection.
Hazard Level
Medium
Vulnerability Type
SQL注入
Affected Vendor
itsourcecode
Published
2025-09-17
Last Modified
2026-02-24
References
https://github.com/drew-byte/Web-Based-Internet-Laboratory-Management-System_SQLi-PoC/blob/main/README.md https://itsourcecode.com/ https://vuldb.com/?ctiid.324616 https://vuldb.com/?id.324616 https://vuldb.com/?submit.649501
Share on: