CNNVD-202601-895 Information
CNNVD ID
CNNVD-202601-895
Related CVE
- CNNVD Published: 2026-01-05
Description (Chinese)
Code-Projects Online Product Reservation System是Code-Projects开源的一个在线产品预订系统。 Code-Projects Online Product Reservation System 1.0版本存在授权问题漏洞,该漏洞源于攻击者可远程绕过身份验证。
Description (English)
Code-Projects Online Production System is an online product booking system open to Code-Projects. Version 1.0 of Code-Projects Online Registration System has a mandate gap, which arises from the fact that the attackers can circumvent identification remotely.
Hazard Level
Medium
Vulnerability Type
授权问题
Affected Vendor
Code-Projects
Published
2026-01-05
Last Modified
2026-02-24
References
https://vuldb.com/?id.339499 https://code-projects.org/ https://github.com/foeCat/CVE/blob/main/OnlineProductReservation_PHP/auth_bypass_admin_panel.md https://vuldb.com/?ctiid.339499 https://github.com/foeCat/CVE/blob/main/OnlineProductReservation_PHP/auth_bypass_admin_panel.md#poc https://vuldb.com/?submit.731127 https://access.redhat.com/security/cve/cve-2026-0589
Share on: