CNNVD-202509-414 Information

Sep 03, 2025 cve

CNNVD ID

CNNVD-202509-414

CVE-2025-9845

CNNVD Published: 2025-09-03

Description (Chinese)

Code-Projects Fruit Shop Management System是Code-Projects开源的一个水果店管理系统。 Code-Projects Fruit Shop Management System 1.0版本存在安全漏洞，该漏洞源于对文件products.php中参数product_code/gen_name/product_name/supplier的错误操作导致跨站脚本攻击。

Description (English)

Code-ProjectsFruit Shop Management System is a fruit shop management system that is open to Code-Projects. The security loophole in version 1.0 of Code-ProjectsFruit Shop Management System stems from an error in the use of the parameter program code/gen name/produc name/supplier for document products.php, resulting in a cross-site script attack.

Hazard Level

Critical

Vulnerability Type

其他

Affected Vendor

Code-Projects

Published

2025-09-03

Last Modified

2026-02-24

References

https://github.com/chen2496088236/CVE/issues/3 https://vuldb.com/?ctiid.322191 https://vuldb.com/?id.322191 https://code-projects.org/ https://vuldb.com/?submit.641940 https://access.redhat.com/security/cve/cve-2025-9845

Share on: