CNNVD-202509-3549 Information

CNNVD ID

CNNVD-202509-3549

Related CVE

CVE-2025-55885

• CNNVD Published: 2025-09-22

Description (Chinese)

ARD GEC en Ligne是法国ARD公司的一个线上服务门户网站。 ARD GEC en Lign 2025-04-23之前版本存在安全漏洞，该漏洞源于index.php中GET参数处理不当，可能导致SQL注入攻击和权限提升。

Description (English)

ARD GEC en Ligne is an online service portal for ARD, France. The security gap in the pre-ARD GEC en Lign 2025-04-23 version stems from the inappropriate handling of the GET parameters in index.php, which may result in SQL being injected into attacks and increased authority.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

ARD

Published

2025-09-22

Last Modified

2026-02-24

References

https://services.ard.fr/index.php http://ard.com https://github.com/0xZeroSec/CVE-2025-55885 http://alpes.com https://access.redhat.com/security/cve/cve-2025-55885