CNNVD-202510-1711 Information

CNNVD ID

CNNVD-202510-1711

Related CVE

CVE-2025-11654

• CNNVD Published: 2025-10-13

Description (Chinese)

Inferno Online Clothing Store是Muhammad Yousaf Saddique个人开发者的一个在线购物网站。 Inferno Online Clothing Store存在SQL注入漏洞，该漏洞源于对文件/log.php中参数cemail/password的错误操作，可能导致SQL注入攻击。

Description (English)

Inferno Online Clothing Store is an online shopping site for Muhammad Yousaf Saddique’s personal developer. Inferno Online Clothing Store has an injection loophole in SQL, which stems from a mishandling of the parameter cemail/password in the document/log.php, which could lead to an attack on SQL.

Hazard Level

Medium

Vulnerability Type

SQL注入

Affected Vendor

个人开发者

Published

2025-10-13

Last Modified

2026-02-24

References

https://github.com/mhszed/Report/blob/main/Ecommerce-Clothing-Website%20sql.docx https://vuldb.com/?ctiid.328071 https://vuldb.com/?id.328071 https://vuldb.com/?submit.665475