CNNVD-202511-040 Information
CNNVD ID
CNNVD-202511-040
Related CVE
- CNNVD Published: 2025-11-02
Description (Chinese)
Code-Projects Simple Online Hotel Reservation System是Code-Projects开源的一个简单的在线酒店预订系统。 Code-Projects Simple Online Hotel Reservation System 2.0版本存在SQL注入漏洞,该漏洞源于对文件/admin/add_account.php中参数Name的错误操作,可能导致SQL注入攻击。
Description (English)
Code-Projects Online Hotel Supply System is a simple online hotel reservation system open to Code-Projects. The Code-Projects Simple Online Supply System 2.0 contains an injection loophole in SQL, which results from an error in the parameter name of the file/admin/add account.php, which may lead to an attack on SQL injection.
Hazard Level
High
Vulnerability Type
SQL注入
Affected Vendor
Code-Projects
Published
2025-11-02
Last Modified
2026-02-24
References
https://code-projects.org/ https://vuldb.com/?id.330889 https://vuldb.com/?submit.677576 https://vuldb.com/?ctiid.330889 https://github.com/asd1238525/cve/blob/main/SQL10.md https://access.redhat.com/security/cve/cve-2025-12594
Share on: