CNNVD-202509-2932 Information
CNNVD ID
CNNVD-202509-2932
Related CVE
- CNNVD Published: 2025-09-18
Description (Chinese)
itsourcecode E-Logbook with Health Monitoring System for COVID-19是itsourcecode开源的一个新冠肺炎健康监测系统电子日志系统。 itsourcecode E-Logbook with Health Monitoring System for COVID-19 1.0版本存在SQL注入漏洞,该漏洞源于对文件/check_profile.php中参数profile_id的错误操作,可能导致SQL注入攻击。
Description (English)
Its sourcecode E-Logbook with Health Monitoring System for COVID-19 is a new electronic log system for the coronary pneumocode health monitoring system. Its sourcecode E-Logbook with Health Monitoring System for COVID-19 Version 1.0 contains an injection loophole in SQL, which is the result of an error in the use of the parameter profile id in the document/check profile.php, which could lead to an attack on SQL injection.
Hazard Level
Medium
Vulnerability Type
SQL注入
Affected Vendor
itsourcecode
Published
2025-09-18
Last Modified
2026-02-24
References
https://github.com/yihaofuweng/cve/issues/25 https://itsourcecode.com/ https://vuldb.com/?ctiid.324791 https://vuldb.com/?id.324791 https://vuldb.com/?submit.652396
Share on: