CNNVD-202512-1015 Information
CNNVD ID
CNNVD-202512-1015
Related CVE
- CNNVD Published: 2025-12-08
Description (Chinese)
Projectworlds Advanced Library Management System是印度Projectworlds公司的一个先进的图书馆管理系统。 projectworlds Advanced Library Management System 1.0版本存在SQL注入漏洞,该漏洞源于对文件/delete_book.php中参数book_id的错误操作,可能导致SQL注入攻击。
Description (English)
Projectworlds Advanced Library Management Systems is an advanced library management system for Projectworlds in India. There is an SQL injection loophole in version 1.0 of the subjectworlds Advanced Library Management System, which is the result of a mishandling of the parameter book id in the document/delete book.php, which could lead to an SQL injection attack.
Hazard Level
Medium
Vulnerability Type
SQL注入
Affected Vendor
Projectworlds
Published
2025-12-08
Last Modified
2026-02-24
References
https://vuldb.com/?submit.707937 https://vuldb.com/?ctiid.334654 https://github.com/rassec2/dbcve/issues/10 https://vuldb.com/?submit.700949 https://vuldb.com/?id.334654
Share on: