CNNVD-202512-2518 Information
CNNVD ID
CNNVD-202512-2518
Related CVE
- CNNVD Published: 2025-12-13
Description (Chinese)
Code-Projects Prison Management System是Code-Projects开源的一个监狱管理系统。 Code-Projects Prison Management System 2.0版本存在SQL注入漏洞,该漏洞源于对文件/admin/search1.php中参数keyname的错误操作,可能导致SQL注入攻击。
Description (English)
The Code-Projects Manual System is a prison management system open to Code-Projects. The Code-Projects Manual System version 2.0 contains an injection loophole in SQL, which arises from a mishandling of the parameter keyname in file/admin/search1.php, which may result in an attack on SQL injection.
Hazard Level
Medium
Vulnerability Type
SQL注入
Affected Vendor
Code-Projects
Published
2025-12-13
Last Modified
2026-02-24
References
https://code-projects.org/ https://github.com/asd1238525/cve/blob/main/SQL19.md https://vuldb.com/?ctiid.336210 https://vuldb.com/?id.336210 https://vuldb.com/?submit.707096 https://access.redhat.com/security/cve/cve-2025-14590
Share on: