CNNVD-202512-2328 Information

CNNVD ID

CNNVD-202512-2328

Related CVE

CVE-2025-14568

• CNNVD Published: 2025-12-12

Description (Chinese)

Stock-Management-System是Mr Erick个人开发者的一个库存管理系统。 Stock-Management-System fbbbf213e9c93b87183a3891f77e3cc7095f22b0版本存在SQL注入漏洞，该漏洞源于对文件model/User.php中参数employee_id/id/admin的错误操作，可能导致SQL注入。

Description (English)

Stock-Management-System is an inventory management system for Mr. Erick ’ s personal developer. The Stock-Management-System fbbbf213e9c93b87183a38191f77e3cc7095f22b0 version has an injection loophole in SQL, which results from an error in the application of the argument employee id/id/admin in document model/User.php, which may result in SQL injection.

Hazard Level

High

Vulnerability Type

SQL注入

Affected Vendor

个人开发者

Published

2025-12-12

Last Modified

2026-02-24

References

https://github.com/ixpqxi/CVE_LIST/blob/master/stock_management_system/sql_injection_vulnerability.md https://vuldb.com/?ctiid.336192 https://vuldb.com/?id.336192 https://vuldb.com/?submit.703880