CNNVD-202512-4806 Information

CNNVD ID

CNNVD-202512-4806

Related CVE

CVE-2024-44065

• CNNVD Published: 2025-12-26

Description (Chinese)

Cloudlog是Peter Goodhall个人开发者的一个自托管的 PHP 应用程序。允许在任何地方记录业余无线电联系人。 Cloudlog 2.6.15版本存在安全漏洞，该漏洞源于qsoresults参数中存在基于时间的盲SQL注入漏洞。

Description (English)

Cloudlog is a private PHP application for Peter Goodhall personal developers. Amateur radio contacts are allowed to be recorded anywhere. There is a security gap in the Cloudlog 2.6.15 version, which stems from the time-based penetration of blind SQL in the qsubsults parameters.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-12-26

Last Modified

2026-02-24

References

https://github.com/jacopo1223/jacopo.github/tree/main/CVE-2024-44065 https://github.com/magicbug/Cloudlog https://access.redhat.com/security/cve/cve-2024-44065

Patch

https://github.com/magicbug/Cloudlog/releases