CNNVD-202510-3500 Information
CNNVD ID
CNNVD-202510-3500
Related CVE
- CNNVD Published: 2025-10-27
Description (Chinese)
Code-Projects Nero Social Networking Site是Code-Projects开源的一个社交网站。 Code-Projects Nero Social Networking Site 1.0版本存在SQL注入漏洞,该漏洞源于对文件/deletemessage.php中参数message_id的错误操作,可能导致SQL注入攻击。
Description (English)
Code-Projects Nero Social Networking Site is a social networking site open to Code-Projects. The Code-Projects Nero Social Networking Site 1.0 contains an injection loophole in SQL, which stems from an error in the use of the parameter message id in the document/deletemmesage.php, which could have led to an attack on SQL injection.
Hazard Level
Medium
Vulnerability Type
SQL注入
Affected Vendor
Code-Projects
Published
2025-10-27
Last Modified
2026-02-24
References
https://vuldb.com/?ctiid.329980 https://code-projects.org/ https://vuldb.com/?id.329980 https://vuldb.com/?submit.676817 https://github.com/yuan466/CVE/blob/main/three/report.md https://access.redhat.com/security/cve/cve-2025-12308
Share on: