CNNVD-202512-824 Information
Dec 07, 2025
cve
CNNVD ID
CNNVD-202512-824
Related CVE
- CNNVD Published: 2025-12-07
Description (Chinese)
Online Banking website using PHP是Rashmin个人开发者的一个网上银行网站。 Online Banking website using PHP存在SQL注入漏洞,该漏洞源于对文件/site/dist/auth_login.php中参数Username的错误操作,可能导致SQL注入。
Description (English)
Online Banking Website using PHP is an online banking site for Rashmin personal developers. Online Banking Website using PHP has an SQL injection loophole, which stems from an error in the parameter Username in the file/site/dist/auth login.php, which may lead to SQL injection.
Hazard Level
Medium
Vulnerability Type
SQL注入
Affected Vendor
个人开发者
Published
2025-12-07
Last Modified
2026-02-24
References
https://vuldb.com/?ctiid.334612 https://vuldb.com/?submit.699237 https://vuldb.com/?id.334612 https://github.com/BrillBigbang/hole-gap/blob/main/online-banking-have-sql.docx https://access.redhat.com/security/cve/cve-2025-14192
Share on: