CNNVD-202512-1005 Information

CNNVD ID

CNNVD-202512-1005

Related CVE

CVE-2025-14223

• CNNVD Published: 2025-12-08

Description (Chinese)

Code-Projects Simple Leave Manager是Code-Projects开源的一个休假管理系统。 Code-Projects Simple Leave Manager 1.0版本存在SQL注入漏洞，该漏洞源于对文件/request.php中参数staff_id的错误操作，可能导致SQL注入攻击。

Description (English)

Code-Projects Simple Leave Manager is a leave management system that is open to Code-Projects. The Code-Projects Simple Leave Manager Version 1.0 contains an injection loophole in SQL, resulting from an error in the application of the parameter Staff id in document/request.php, which could lead to an attack on SQL injection.

Hazard Level

Medium

Vulnerability Type

SQL注入

Affected Vendor

Code-Projects

Published

2025-12-08

Last Modified

2026-02-24

References

https://code-projects.org/ https://github.com/woshilaiyi/cve/issues/4 https://vuldb.com/?ctiid.334665 https://vuldb.com/?id.334665 https://vuldb.com/?submit.701639