CNNVD-202512-3795 Information
CNNVD ID
CNNVD-202512-3795
Related CVE
- CNNVD Published: 2025-12-19
Description (Chinese)
Code-Projects Simple Stock System是Code-Projects开源的一个简单股票系统。 Code-Projects Simple Stock System 1.0版本存在SQL注入漏洞,该漏洞源于文件/market/update.php中未知功能对参数email处理不当,可能导致SQL注入。
Description (English)
Code-Projects Simple Stock Systems is a simple stock system open to Code-Projects. The Code-Projects Simple Stock System Version 1.0 contains an injection loophole in SQL, which stems from the inappropriate handling of the parameter email by unknown functionality in document/market/update.php, which may result in SQL injection.
Hazard Level
Medium
Vulnerability Type
SQL注入
Affected Vendor
Code-Projects
Published
2025-12-19
Last Modified
2026-02-24
References
https://code-projects.org/ https://github.com/z2sw57y/CVE/issues/1 https://vuldb.com/?id.337603 https://vuldb.com/?ctiid.337603 https://vuldb.com/?submit.718433 https://access.redhat.com/security/cve/cve-2025-14968
Share on: