CNNVD-202511-2680 Information
CNNVD ID
CNNVD-202511-2680
Related CVE
- CNNVD Published: 2025-11-24
Description (Chinese)
itsourcecode Student Information System是itsourcecode开源的一个学生信息系统。 itsourcecode Student Information System 1.0版本存在SQL注入漏洞,该漏洞源于对文件/schedule_edit1.php中参数schedule_id的错误操作,可能导致SQL注入。
Description (English)
Its sourcecodeSystem is an open-source student information system. There is an SQL injection loophole in version 1.0 of its sourcecodeStudent Information System (SQL), which results from an error in the parameter Schedule edule id in the file/schedule edit1.php, which may result in SQL injection.
Hazard Level
High
Vulnerability Type
SQL注入
Affected Vendor
itsourcecode
Published
2025-11-24
Last Modified
2026-02-24
References
https://vuldb.com/?ctiid.333345 https://github.com/ltranquility/CVE/issues/14 https://vuldb.com/?submit.699516 https://itsourcecode.com/ https://vuldb.com/?id.333345 https://access.redhat.com/security/cve/cve-2025-13581
Share on: