CNNVD-202511-2362 Information

CNNVD ID

CNNVD-202511-2362

Related CVE

CVE-2025-13450

• CNNVD Published: 2025-11-20

Description (Chinese)

SourceCodester Online Shop Project是SourceCodester开源的一个在线商店项目。 SourceCodester Online Shop Project 1.0版本存在安全漏洞，该漏洞源于对文件/shop/register.php中参数f_name的错误操作，可能导致跨站脚本攻击。

Description (English)

The SourceCodester Online Shop Project is an online shop project that is open to ServiceCodester. The security loophole in version 1.0 of SourceCodester Online Shop Project stems from an error in the use of parameter f name in file/shop/register.php, which may result in a cross-site script attack.

Hazard Level

Critical

Vulnerability Type

其他

Affected Vendor

SourceCodester

Published

2025-11-20

Last Modified

2026-02-24

References

https://github.com/xiaojuzirr/cve/issues/5 https://vuldb.com/?ctiid.333020 https://vuldb.com/?id.333020 https://vuldb.com/?submit.694780 https://www.sourcecodester.com/