CNNVD-202510-927 Information

CNNVD ID

CNNVD-202510-927

Related CVE

CVE-2025-52021

• CNNVD Published: 2025-10-07

Description (Chinese)

Online Shopping System Advanced是Puneeth Reddy H C个人开发者的一个网上商店网站。 Online Shopping System Advanced 1.0版本存在安全漏洞，该漏洞源于对文件edit_product.php中参数product_id的验证不足，可能导致SQL注入攻击。

Description (English)

Online Shoping Systems Advanced is an online shop site for Puneeth Reddy HC personal developers. Online Shoping System Advanced Version 1.0 has a security loophole, which results from insufficient verification of the parameters in document edit product.php and may lead to an SQL injection attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-10-07

Last Modified

2026-02-24

References

https://gist.github.com/hafizgemilang/c953d16c1459458667132e93359f3d6c https://access.redhat.com/security/cve/cve-2025-52021