CNNVD-202512-2479 Information

Dec 13, 2025 cve

CNNVD ID

CNNVD-202512-2479

CVE-2025-14637

CNNVD Published: 2025-12-13

Description (Chinese)

itsourcecode Online Pet Shop Management System是itsourcecode开源的一个网上宠物店管理系统。 itsourcecode Online Pet Shop Management System 1.0版本存在SQL注入漏洞，该漏洞源于对文件/pet1/addcnp.php中参数cnpname的错误操作，可能导致SQL注入攻击。

Description (English)

Its sourcecode Online Pet Shot Management System is an online pet shop management system that is open to accesscode. Its sourcecode Online Pet Shot Management System Version 1.0 contains an injection loophole in SQL, which results from the error of cnpname, the parameter in the file/pet1/addcnp.php, and may lead to an attack on SQL injection.

Hazard Level

Medium

Vulnerability Type

SQL注入

Affected Vendor

itsourcecode

Published

2025-12-13

Last Modified

2026-02-24

References

https://github.com/sec-dreamer/vulpxnPolm/issues/1 https://itsourcecode.com/ https://vuldb.com/?ctiid.336362 https://vuldb.com/?id.336362 https://vuldb.com/?submit.707271 https://access.redhat.com/security/cve/cve-2025-14637

Share on: