CNNVD-202511-037 Information

Nov 02, 2025 cve

CNNVD ID

CNNVD-202511-037

CVE-2025-12598

CNNVD Published: 2025-11-02

Description (Chinese)

SourceCodester Best House Rental Management System是SourceCodester开源的一个房屋租赁管理系统。 SourceCodester Best House Rental Management System 1.0版本存在SQL注入漏洞，该漏洞源于文件/admin_class.php中函数save_tenant对参数firstname的错误操作，可能导致SQL注入攻击。

Description (English)

SourceCodester Best House Rental Management System is an open-source rental management system of the OfficeCodester. SourceCodester Best HouseRental Management System Version 1.0 has an injection loophole in SQL, which stems from the error of the function save tenant against parameter firstname in file/admin class.php, which could lead to an SQL injection attack.

Hazard Level

High

Vulnerability Type

SQL注入

Affected Vendor

SourceCodester

Published

2025-11-02

Last Modified

2026-02-24

References

https://vuldb.com/?ctiid.330893 https://www.sourcecodester.com/ https://github.com/321190176/Best-house-rental-management-system-2/blob/main/report.md https://vuldb.com/?id.330893 https://vuldb.com/?submit.678086 https://access.redhat.com/security/cve/cve-2025-12598

Share on: