CNNVD-202511-1944 Information

Nov 17, 2025 cve

CNNVD ID

CNNVD-202511-1944

CVE-2025-13264

CNNVD Published: 2025-11-17

Description (Chinese)

SourceCodester Online Magazine Management System是SourceCodester开源的一个在线杂志管理系统。 SourceCodester Online Magazine Management System 1.0版本存在SQL注入漏洞，该漏洞源于对文件/view_magazine.php中参数ID的错误操作，可能导致SQL注入。

Description (English)

SourceCodester Online Magazine Management System is an online magazine management system that is open-sourced to SourceCodester. SourceCodester Online Magazine Management System Version 1.0 has an injection loophole in SQL, which is the result of an error in the operation of parameter ID in document/view magazine.php, which may lead to SQL injection.

Hazard Level

High

Vulnerability Type

SQL注入

Affected Vendor

SourceCodester

Published

2025-11-17

Last Modified

2026-02-24

References

https://vuldb.com/?ctiid.332599 https://github.com/0xffaaa/cve/blob/main/Online%20Magazine%20Management%20System%20SQL%20blind%20injection2(SQLI)%20.md https://vuldb.com/?submit.689424 https://www.sourcecodester.com/ https://vuldb.com/?id.332599 https://access.redhat.com/security/cve/cve-2025-13264

Share on: