CNNVD-202512-3260 Information

CNNVD ID

CNNVD-202512-3260

Related CVE

CVE-2023-53926

• CNNVD Published: 2025-12-17

Description (Chinese)

PHPJabbers Simple CMS是PHPJabbers开源的一个内容管理系统。 PHPJabbers Simple CMS 5.0版本存在SQL注入漏洞，该漏洞源于index.php端点中column参数存在SQL注入，可能导致数据库信息被提取或修改。

Description (English)

PHP Jabbers Simple CMS is an open-source content management system for PHP Jabbers. PHP Jabbers Simple CMS version 5.0 has an injection loophole in SQL, which stems from the injection of the column parameter in the index.php endpoint, which may lead to the extraction or modification of database information.

Hazard Level

Low

Vulnerability Type

SQL注入

Affected Vendor

PHPJabbers

Published

2025-12-17

Last Modified

2026-02-24

References

https://www.exploit-db.com/exploits/51416 https://www.vulncheck.com/advisories/phpjabbers-simple-cms-sql-injection-via-column-parameter https://www.phpjabbers.com/faq.php https://access.redhat.com/security/cve/cve-2023-53926