CNNVD-202512-3885 Information

Dec 21, 2025 cve

CNNVD ID

CNNVD-202512-3885

CVE-2025-14990

CNNVD Published: 2025-12-21

Description (Chinese)

CampCodes Complete Online Beauty Parlor Management System是CampCodes公司的一个在线美容院管理系统。 CampCodes Complete Online Beauty Parlor Management System 1.0版本存在SQL注入漏洞，该漏洞源于文件/admin/view-appointment.php中未知函数对参数viewid处理不当，可能导致SQL注入。

Description (English)

CampCodes Complete Online Beauty Parlor Management Systems is an online beauty salon management system for CampCodes. The version 1.0 of CampCodes Complete Online Beauty Parlor Management System has an injection loophole in SQL, which stems from the inappropriate handling of the unknown function to the parameter viewid in the file/admin/view-application.php, which may lead to SQL injection.

Hazard Level

Medium

Vulnerability Type

SQL注入

Affected Vendor

CampCodes

Published

2025-12-21

Last Modified

2026-02-24

References

https://www.campcodes.com/ https://vuldb.com/?id.337684 https://github.com/funnnxxx/my-cve/issues/2 https://vuldb.com/?ctiid.337684 https://vuldb.com/?submit.718453 https://access.redhat.com/security/cve/cve-2025-14990

Share on: