CNNVD-202512-958 Information
Dec 08, 2025
cve
CNNVD ID
CNNVD-202512-958
Related CVE
- CNNVD Published: 2025-12-08
Description (Chinese)
Code-Projects Online Ordering System是Code-Projects开源的一个在线订购系统。 code-projects Online Ordering System 1.0版本存在安全漏洞,该漏洞源于对文件/admin/中参数Username的错误操作,可能导致SQL注入攻击。
Description (English)
Code-Projects Online Ordering Systems is an online ordering system open to Code-Projects. There is a security loophole in version 1.0 of code-projects Online Ordering System, which stems from a mishandling of the file/admin/media parameter Username, which could lead to an SQL injection attack.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Code-Projects
Published
2025-12-08
Last Modified
2026-02-24
References
https://code-projects.org/ https://github.com/zzb1388/cve/issues/95 https://vuldb.com/?ctiid.334761 https://vuldb.com/?id.334761 https://vuldb.com/?submit.702467
Share on: