CNNVD-202512-814 Information

Dec 07, 2025 cve

CNNVD ID

CNNVD-202512-814

CVE-2025-14203

CNNVD Published: 2025-12-07

Description (Chinese)

Code-Projects Question Paper Generator是Code-Projects开源的一个试卷生成软件。 Code-Projects Question Paper Generator 1.0及之前版本存在SQL注入漏洞，该漏洞源于文件/selectquestionuser.php中参数subid处理不当，可能导致SQL注入攻击。

Description (English)

Code-Projects Question Paper Generator is a code-Projects open source test-generated software. Code-Projects Question PaperSmart 1.0 and previous versions contained an injection loophole in SQL, which stemmed from the inappropriate handling of the parameters subid in the document/selactquestionuser.php, which could have led to an SQL injection attack.

Hazard Level

High

Vulnerability Type

SQL注入

Affected Vendor

Code-Projects

Published

2025-12-07

Last Modified

2026-02-24

References

https://vuldb.com/?ctiid.334646 https://github.com/asd1238525/cve/blob/main/SQL17.md https://code-projects.org/ https://vuldb.com/?id.334646 https://vuldb.com/?submit.700153 https://access.redhat.com/security/cve/cve-2025-14203

Share on: