CNNVD-202512-196 Information
CNNVD ID
CNNVD-202512-196
Related CVE
- CNNVD Published: 2025-12-02
Description (Chinese)
SourceCodester Web-based Pharmacy Product Management System是SourceCodester开源的一个基于 Web 的药房产品管理系统。 Sourcecodester Web-based Pharmacy Product Management System v1.0版本存在安全漏洞,该漏洞源于/product_expiry/add-supplier.php中的Supplier Name字段容易受到跨站脚本攻击。
Description (English)
SourceCodester Web-based Pharmacy Production System is a Web-based pharmacy product management system from the SourceCodester. Security breach in version V1.0 of Sourcecodester Web-based Handbook Management System, which originated from the Supplier Name field in /product expery/add-supplier.php is vulnerable to cross-site script attacks.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
SourceCodester
Published
2025-12-02
Last Modified
2026-02-24
References
https://github.com/vabnamoni/CVE-Researches/blob/main/CVE-2025-65215 https://www.linkedin.com/in/vabna-lina-24ab17186/ https://access.redhat.com/security/cve/cve-2025-65215
Share on: