CNNVD-202509-640 Information
Sep 04, 2025
cve
CNNVD ID
CNNVD-202509-640
Related CVE
- CNNVD Published: 2025-09-04
Description (Chinese)
appRain CMF是加拿大appRain公司的一个内容管理框架。 appRain CMF 4.0.5版本存在SQL注入漏洞,该漏洞源于对data%5BAdmin%5D%5Busername%5D参数处理不当,可能导致SQL注入攻击。
Description (English)
AppRain CMF is a content management framework for AppRain Canada. Version AppRain CMF 4.0.5 has an injection loophole in SQL, which stems from the mishandling of the data %5BADmin %5D %5Busername %5D parameter, which could lead to an SQL injection attack.
Hazard Level
Low
Vulnerability Type
SQL注入
Affected Vendor
appRain
Published
2025-09-04
Last Modified
2026-02-24
References
https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-apprain-cmf
Share on: