CNNVD-202512-1670 Information

CNNVD ID

CNNVD-202512-1670

Related CVE

CVE-2025-14285

• CNNVD Published: 2025-12-09

Description (Chinese)

Code-Projects Employee Profile Management System是Code-Projects开源的一个员工档案管理系统。 Code-Projects Employee Profile Management System 1.0版本存在安全漏洞，该漏洞源于对文件edit_personnel.php中参数per_id的错误操作，可能导致SQL注入。

Description (English)

Code-Projects Employee Project Management Systems is an employee file management system that is an open source for Code-Projects. A security loophole exists in version 1.0 of Code-Projects Employe Engineering System, which results from an error in the edit personnel.php parameter per id, which may result in an injection of SQL.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Code-Projects

Published

2025-12-09

Last Modified

2026-02-24

References

https://code-projects.org/ https://github.com/tiancesec/CVE/issues/15 https://vuldb.com/?ctiid.334873 https://vuldb.com/?id.334873 https://vuldb.com/?submit.702684