CNNVD-202511-2380 Information
CNNVD ID
CNNVD-202511-2380
Related CVE
- CNNVD Published: 2025-11-21
Description (Chinese)
itsourcecode Online File Management System是itsourcecode开源的一个在线文件管理系统。 itsourcecode Online File Management System 1.0版本存在SQL注入漏洞,该漏洞源于对文件/ajax.php?action=login中参数Username的错误操作,可能导致SQL注入攻击。
Description (English)
Its sourcecode Online File Management System is an online file management system open to source. Its sourcecode Online File Management System Version 1.0 contains an injection loophole in SQL, which results from the error of Username, the parameter in the file/ajax.php?action=login, which may lead to an attack on SQL injection.
Hazard Level
Medium
Vulnerability Type
SQL注入
Affected Vendor
itsourcecode
Published
2025-11-21
Last Modified
2026-02-24
References
https://vuldb.com/?submit.696405 https://vuldb.com/?id.333085 https://github.com/jaisurya-me/CVE/issues/1 https://vuldb.com/?ctiid.333085 https://itsourcecode.com/ https://access.redhat.com/security/cve/cve-2025-13485
Share on: