CNNVD-202512-3150 Information

CNNVD ID

CNNVD-202512-3150

Related CVE

CVE-2023-53917

• CNNVD Published: 2025-12-17

Description (Chinese)

Powerstone Affiliate Me是加纳Powerstone公司的一个联盟营销管理系统。 Powerstone Affiliate Me 5.0.1版本存在SQL注入漏洞，该漏洞源于admin.php端点id参数操作不当，可能导致SQL注入攻击。

Description (English)

Powerstone Affiliate Me is a coalition marketing management system for Powerstone, Ghana. Version 5.0.1 of Powerstone Affiliate Me has an injection loophole in SQL, which stems from the inappropriate operation of the admin.php endpointid parameters, which could lead to an attack by SQL.

Hazard Level

High

Vulnerability Type

SQL注入

Affected Vendor

Powerstone

Published

2025-12-17

Last Modified

2026-02-24

References

https://www.exploit-db.com/exploits/51468 https://www.powerstonegh.com/ https://www.vulncheck.com/advisories/affiliate-me-sql-injection-vulnerability-via-admin-panel https://access.redhat.com/security/cve/cve-2023-53917