CNNVD-202601-029 Information

CNNVD ID

CNNVD-202601-029

Related CVE

CVE-2025-15405

• CNNVD Published: 2026-01-01

Description (Chinese)

PHPEMS是PHPEMS开源的一个PHP在线模拟考试系统。 PHPEMS 11.0及之前版本存在安全漏洞，该漏洞源于容易受到跨站请求伪造攻击。

Description (English)

PHPEMS is an open source of PHPEMS, an online PHP simulation examination system. PHPEMS 11.0 and previous versions contain a security loophole that stems from the vulnerability to cross-site requests for false attacks.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

PHPEMS

Published

2026-01-01

Last Modified

2026-02-24

References

https://byebydoggy.github.io/post/2025/1231-phpems-csrf-poc/ https://vuldb.com/?ctiid.339325 https://vuldb.com/?id.339325 https://vuldb.com/?submit.728314