CNNVD-202510-1191 Information
CNNVD ID
CNNVD-202510-1191
Related CVE
- CNNVD Published: 2025-10-08
Description (Chinese)
Code-Projects Web-Based Inventory and POS System是Code-Projects开源的一个基于web的库存和POS系统。 code-projects Web-Based Inventory and POS System 1.0版本存在安全漏洞,该漏洞源于对文件/transaction.php中参数shopid的错误操作,可能导致SQL注入攻击。
Description (English)
Code-Projects Web-Based Information and POS Systems is a web-based inventory and POS system that is open to Code-Projects. There is a security loophole in version 1.0 of code-projectes Web-Basted Industries and POS System, which stems from a mishandling of the shopid parameter in file/transaction.php, which may result in an SQL injection attack.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Code-Projects
Published
2025-10-08
Last Modified
2026-02-24
References
https://code-projects.org/ https://github.com/asd1238525/cve/blob/main/SQL7.md https://vuldb.com/?ctiid.327368 https://vuldb.com/?id.327368 https://vuldb.com/?submit.666277
Share on: