CNNVD-202509-4286 Information

Sep 28, 2025 cve

CNNVD ID

CNNVD-202509-4286

CVE-2025-11119

CNNVD Published: 2025-09-28

Description (Chinese)

itsourcecode Hostel Management System是itsourcecode开源的一个宿舍管理系统。 itsourcecode Hostel Management System 1.0版本存在代码注入漏洞，该漏洞源于对文件/justines/index.php中组件POST Request Handler的参数from操作不当，可能导致跨站脚本攻击。

Description (English)

Its sourcecode Hostel Management System is an open-source residential management system. Its sourcecodecode Hostel Management System Version 1.0 contains a code-injection loophole, which results from the inappropriate operation of the parameter from for component POST Request Handler in document/justices/index.php, which may result in a cross-site script attack.

Hazard Level

High

Vulnerability Type

代码注入

Affected Vendor

itsourcecode

Published

2025-09-28

Last Modified

2026-02-24

References

https://vuldb.com/?submit.663519 https://vuldb.com/?id.326200 https://vuldb.com/?ctiid.326200 https://github.com/yihaofuweng/cve/issues/32 https://itsourcecode.com/ https://access.redhat.com/security/cve/cve-2025-11119

Share on: