CNNVD-202512-4957 Information
CNNVD ID
CNNVD-202512-4957
Related CVE
- CNNVD Published: 2025-12-29
Description (Chinese)
Code-Projects Assessment Management是Code-Projects开源的一个评估管理系统。 Code-Projects Assessment Management 1.0版本存在SQL注入漏洞,该漏洞源于对文件login.php中参数userid的错误操作,可能导致SQL注入攻击。
Description (English)
Code-Projects Information Management is an assessment management system for the open source of Code-Projects. The Code-Projects Information Management Version 1.0 contains an injection loophole in SQL, which stems from an error in the userid parameter in document login.php, which could lead to an attack on SQL injection.
Hazard Level
Medium
Vulnerability Type
SQL注入
Affected Vendor
Code-Projects
Published
2025-12-29
Last Modified
2026-02-24
References
https://vuldb.com/?ctiid.338583 https://code-projects.org/ https://github.com/Limingqian123/CVE/issues/4 https://vuldb.com/?submit.724718 https://vuldb.com/?id.338583 https://access.redhat.com/security/cve/cve-2025-15196
Share on: