CNNVD-202512-1006 Information
Dec 08, 2025
cve
CNNVD ID
CNNVD-202512-1006
Related CVE
- CNNVD Published: 2025-12-08
Description (Chinese)
SourceCodester Online Banking System是SourceCodester开源的一个网上银行系统。 SourceCodester Online Banking System 1.0版本存在代码注入漏洞,该漏洞源于对文件/?page=user中参数First Name/Last Name的错误操作,可能导致跨站脚本攻击。
Description (English)
ServiceCodester Online Banking Systems is an online banking system open to ServiceCodester. SourceCodester Online Banking System Version 1.0 contains a code-injection loophole that results from an error in the file/?page=user parameter First Name/Last Name, which may result in a cross-site script attack.
Hazard Level
Critical
Vulnerability Type
代码注入
Affected Vendor
SourceCodester
Published
2025-12-08
Last Modified
2026-02-24
References
https://mega.nz/file/T4hjCagS#87U1JgRHZWzXW2HTpBIG-H9dJ_w9kUERmaaQqJyB5_Q https://vuldb.com/?ctiid.334663 https://vuldb.com/?id.334663 https://vuldb.com/?submit.701624 https://www.sourcecodester.com/
Share on: