CNNVD-202509-4290 Information
CNNVD ID
CNNVD-202509-4290
Related CVE
- CNNVD Published: 2025-09-28
Description (Chinese)
Code-Projects Simple Scheduling System是Code-Projects开源的一个简易调度系统。 Code-Projects Simple Scheduling System 1.0版本存在SQL注入漏洞,该漏洞源于对文件/addtime.php中参数starttime和endtime的错误操作,可能导致SQL注入攻击。
Description (English)
Code-Projects Simple Scheduling Systems is a simple movement control system for the Code-Projects open source. The Code-Projects Simple Scheduling System Version 1.0 contains an injection loophole in SQL, which arises out of an error in the performance of the parameters Starttime and Endtime in the document/addtime.php, which could have led to an attack on SQL injection.
Hazard Level
Medium
Vulnerability Type
SQL注入
Affected Vendor
Code-Projects
Published
2025-09-28
Last Modified
2026-02-24
References
https://github.com/yihaofuweng/cve/issues/41 https://vuldb.com/?ctiid.326196 https://code-projects.org/ https://vuldb.com/?id.326196 https://vuldb.com/?submit.662700 https://access.redhat.com/security/cve/cve-2025-11115
Share on: