CNNVD-202512-5010 Information

CNNVD ID

CNNVD-202512-5010

Related CVE

CVE-2025-15169

• CNNVD Published: 2025-12-29

Description (Chinese)

BiggiDroid Simple PHP CMS是BiggiDroid开源的一个内容管理系统。 BiggiDroid Simple PHP CMS 1.0版本存在SQL注入漏洞，该漏洞源于对文件/admin/editsite.php中参数ID的错误操作，可能导致SQL注入。

Description (English)

BiggiDroid Simple PHP CMS is a content management system for BiggiDroid open source. BiggiDroid Simple PHP CMS Version 1.0 has an injection loophole in SQL, which stems from the error of the parameter ID in file/admin/editsite.php, which may lead to SQL injection.

Hazard Level

High

Vulnerability Type

SQL注入

Affected Vendor

BiggiDroid

Published

2025-12-29

Last Modified

2026-02-24

References

https://vuldb.com/?submit.708845 https://gitee.com/sun-huizhi/dazhi/issues/IDBDAY https://vuldb.com/?id.338549 https://vuldb.com/?ctiid.338549 https://access.redhat.com/security/cve/cve-2025-15169