CNNVD-202510-2754 Information

Oct 21, 2025 cve

CNNVD ID

CNNVD-202510-2754

CVE-2025-56450

  • CNNVD Published: 2025-10-21

Description (Chinese)

Spacecom Log2Space Subscriber Management Software是印度Spacecom公司的一个订阅用户管理软件。 Spacecom Log2Space Subscriber Management Software 1.1版本存在安全漏洞,该漏洞源于未对/l2s/api/selfcareLeadHistory端点中的lead_id参数进行验证和清理,可能导致SQL注入攻击。

Description (English)

Spacecom Log2Space Subscriber Management Software is a subscriber management software for Spacecom, India. Spacecom Log2Space Subscriber Security Security 1.1 has a security loophole, which stems from the failure to validate and clean up the long-id parameters at the end of /l2s/api/selfcareLeadHistory, which could lead to an SQL injection attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Spacecom

Published

2025-10-21

Last Modified

2026-02-24

References

https://reference1.example.com/selfcare/login https://github.com/apboss123/CVE-2025-56450/blob/main/README.md https://access.redhat.com/security/cve/cve-2025-56450

Share on: