CNNVD-202511-2638 Information

Nov 24, 2025 cve

CNNVD ID

CNNVD-202511-2638

CVE-2025-56401

  • CNNVD Published: 2025-11-24

Description (Chinese)

ZIRA Group Wholesale Business Revenue Management是波斯尼亚和黑塞哥维那ZIRA Group公司的一个批发业务收入管理系统。 ZIRA Group Wholesale Business Revenue Management 7.0版本存在安全漏洞,该漏洞源于referenceLookupsByTableNameAndColumnName函数中存在SQL注入漏洞。

Description (English)

ZIRA Groupe House Business Revue Management is a wholesale revenue management system for ZIRA Group in Bosnia and Herzegovina. There is a security loophole in version 7.0 of ZIRA Group Wallesale Business Revue Management, which stems from the SQL injection gap in the ReferenceLookupsByTableName AndColumnName function.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

ZIRA Group

Published

2025-11-24

Last Modified

2026-02-24

References

http://wbrm.com https://mstreet97.github.io/security/cve/sqli/2025/07/25/Zira-WBRM-SQL-Injection-CVE-2025-56401.html https://access.redhat.com/security/cve/cve-2025-56401

Share on: