CNNVD-202510-1212 Information

CNNVD ID

CNNVD-202510-1212

Related CVE

CVE-2025-60314

• CNNVD Published: 2025-10-08

Description (Chinese)

Sistema Web de Inventario Simple en PHP y MySQL是Mauricio Sevilla Britto个人开发者的一个Web库存系统。 Sistema Web de Inventario Simple en PHP y MySQL 1.0版本存在安全漏洞，该漏洞源于产品名称参数缺乏输入清理，可能导致存储型跨站脚本攻击。

Description (English)

Sistema Web de Inventario Simple en PHP y MySQL is a Web inventory system of Mauricio Sevilla Britto’s personal developers. There is a security loophole in version 1.0 of Sistema Web de Inventario Simple en PHP y MySQL, which results from a lack of input clearance of product name parameters, which may result in a storage-type cross-site script attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-10-08

Last Modified

2026-02-24

References

https://configuroweb.com/sistema-web-de-inventario-simple-en-php-mysql/ https://github.com/ChuckBartowski7/Vulnerability-Research/blob/main/CVE-2025-60314/README.md https://github.com/configuroweb/inventariobasico https://access.redhat.com/security/cve/cve-2025-60314