CNNVD-202512-970 Information
CNNVD ID
CNNVD-202512-970
Related CVE
- CNNVD Published: 2025-12-08
Description (Chinese)
Code-Projects Daily Time Recording System是Code-Projects开源的一个每日时间记录系统。 Code-Projects Daily Time Recording System 4.5.0版本存在SQL注入漏洞,该漏洞源于对文件/admin/add_payroll.php中参数detail_Id的错误操作,可能导致SQL注入攻击。
Description (English)
Code-Projects Daily Time Recording Systems is a daily time recording system open to Code-Projects. The Code-Projects Daily Time Recording System version 4.5.0 contains an injection loophole in SQL, which results from a mishandling of the parameter detail Id in the document/admin/add payroll.php, which could lead to an attack on SQL injection.
Hazard Level
High
Vulnerability Type
SQL注入
Affected Vendor
Code-Projects
Published
2025-12-08
Last Modified
2026-02-24
References
https://code-projects.org/ https://github.com/woshilaiyi/cve/issues/6 https://vuldb.com/?ctiid.334672 https://vuldb.com/?id.334672 https://vuldb.com/?submit.702426
Share on: