CNNVD-202601-1953 Information
CNNVD ID
CNNVD-202601-1953
Related CVE
- CNNVD Published: 2026-01-13
Description (Chinese)
SLiMS 9 Bulian是印度尼西亚SLiMS社区的一个免费的开源软件。用于图书馆资源管理(如书籍、期刊、数字文档和其他图书馆资料)和管理。 SLiMS 9 Bulian 9.0.0版本存在SQL注入漏洞,该漏洞源于class参数存在SQL注入漏洞,可能导致提取敏感信息。
Description (English)
SLIMS 9 Bulian is a free open source software for the SLiMS community in Indonesia. For library resource management (e.g., books, periodicals, digital files and other library materials) and management. Version 9.0.0 of SL has an injection loophole in SQL, which stems from the SQL injection gap in the class parameter, which may lead to the extraction of sensitive information.
Hazard Level
Medium
Vulnerability Type
SQL注入
Affected Vendor
SLiMS
Published
2026-01-13
Last Modified
2026-02-24
References
https://github.com/nu11secur1ty/CVE-nu11secur1ty/tree/main/vendors/slims.web.id/SLIMS-9.0.0/SQLi https://slims.web.id/web/ https://www.exploit-db.com/exploits/51161 https://www.vulncheck.com/advisories/senayan-library-management-system-sql-injection
Patch
https://github.com/slims/slims9_bulian/releases
Share on: