CNNVD-202509-4253 Information

CNNVD ID

CNNVD-202509-4253

Related CVE

CVE-2025-11056

• CNNVD Published: 2025-09-27

Description (Chinese)

school-management-system是Shubham kumar个人开发者的一个PHP为学校或小型机构开发的学校管理系统。 school-management-system 1.0版本存在SQL注入漏洞，该漏洞源于对文件owner_panel/fetch-data/select-students.php中参数select的错误操作，可能导致SQL注入攻击。

Description (English)

School-management-system is a PHP developed by Shubham Kumar Personal Developer for schools or small institutions. The school-manage-system 1.0 has an injection loophole in SQL, which results from an error in the select parameter in document owner panel/fetch-data/select-students.php, which could lead to an attack on SQL injection.

Hazard Level

High

Vulnerability Type

SQL注入

Affected Vendor

个人开发者

Published

2025-09-27

Last Modified

2026-02-24

References

https://vuldb.com/?ctiid.326096 https://vuldb.com/?id.326096 https://vuldb.com/?submit.659463 https://gold-textbook-8ff.notion.site/school-management-system-student_panel-Owner-end-select-students-php-delay-SQL-injection-27485e97f35380a1b482c8e079cd6503 https://access.redhat.com/security/cve/cve-2025-11056