CNNVD-202512-2650 Information

CNNVD ID

CNNVD-202512-2650

Related CVE

CVE-2023-38913

• CNNVD Published: 2025-12-15

Description (Chinese)

NEWS-BUZZ是ANIRBAN DUTTA个人开发者的一个新闻管理系统，允许用户发布和管理各种新闻内容。 NEWS-BUZZ v.1.0版本存在安全漏洞，该漏洞源于容易受到SQL注入攻击，可能导致执行任意代码。

Description (English)

NEWS-BUZZ is an information management system for the personal developers of ANIRBAN DUTTA, which allows users to publish and manage various news content. There is a security loophole in version NEWS-BUZV.1.0, which stems from the vulnerability of SQL injections, which may result in the implementation of arbitrary codes.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-12-15

Last Modified

2026-02-24

References

https://gist.github.com/nguyenkhanhthuan/03ce706686508b14506d38788c754dfb https://github.com/ThuanNguyen115685/Report/blob/main/sqlinjection.md