CNNVD-202509-3037 Information
CNNVD ID
CNNVD-202509-3037
Related CVE
- CNNVD Published: 2025-09-18
Description (Chinese)
itsourcecode Online Petshop Management System是itsourcecode开源的一个网上宠物店管理系统。 itsourcecode Online Petshop Management System 1.0版本存在安全漏洞,该漏洞源于对文件addcnp.php中参数name和description的错误操作,可能导致跨站脚本攻击。
Description (English)
Its sourcecode Online Petshop Management System is an online pet shop management system that is open to accesscode. There is a security loophole in version 1.0 of itssourcecode Online Petshop Management System, which results from an error in the use of the parameter name and descript in document addcnp.php, which may result in a cross-site script attack.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
itsourcecode
Published
2025-09-18
Last Modified
2026-02-24
References
https://github.com/drew-byte/Online-Pet-Shop-Management-System-Stored-XSS-PoC/blob/main/README.md https://itsourcecode.com/ https://vuldb.com/?ctiid.324660 https://vuldb.com/?id.324660 https://vuldb.com/?submit.650675
Share on: