CNNVD-202512-043 Information

CNNVD ID

CNNVD-202512-043

Related CVE

CVE-2025-51683

• CNNVD Published: 2025-12-01

Description (Chinese)

mJobtime是美国mJobtime公司的一个时间跟踪和作业管理软件。 mJobtime v15.7.2版本存在安全漏洞，该漏洞源于未经验证的攻击者可通过特制POST请求执行任意SQL语句，可能导致SQL注入攻击。

Description (English)

mJobtime is a time tracking and operations management software for mJobtime in the United States. There is a security gap in version mJobtime v15.7.2, which stems from the fact that uncertified assailants can request the execution of arbitrary SQL statements through a specially designed POST, which could lead to an injection of SQL.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

mJobtime

Published

2025-12-01

Last Modified

2026-02-24

References

https://labs.infoguard.ch/advisories/cve-2025-51682_cve-2025-51683_time_management_softare_sqli-rce/ http://mjobtime.com https://access.redhat.com/security/cve/cve-2025-51683