CNNVD-202512-2144 Information

CNNVD ID

CNNVD-202512-2144

Related CVE

CVE-2025-14531

• CNNVD Published: 2025-12-11

Description (Chinese)

Code-Projects Rental Management System是Code-Projects开源的一个租赁管理系统。 Code-Projects Rental Management System 2.0版本存在注入漏洞，该漏洞源于组件Log Handler的文件Transaction.java中存在缺陷，可能导致CRLF注入攻击。

Description (English)

Code-Projects Rental Management System is a lease management system that is open to Code-Projects. There is an injection loophole in version 2.0 of Code-Projects Rental Management System, which stems from deficiencies in the Transaction.java document of component Log Handler, which could lead to an attack by CRLF.

Hazard Level

High

Vulnerability Type

注入

Affected Vendor

Code-Projects

Published

2025-12-11

Last Modified

2026-02-24

References

https://code-projects.org/ https://github.com/asd1238525/cve/blob/main/CRLF.md https://vuldb.com/?ctiid.335872 https://vuldb.com/?id.335872 https://vuldb.com/?submit.703239