CNNVD-202602-1084 Information

Feb 07, 2026 cve

CNNVD ID

CNNVD-202602-1084

CVE-2026-2115

  • CNNVD Published: 2026-02-07

Description (Chinese)

itsourcecode Society Management System是itsourcecode开源的一个社会管理系统。 itsourcecode Society Management System 1.0版本存在SQL注入漏洞,该漏洞源于对文件/admin/delete_expenses.php中参数expenses_id的错误操作,可能导致SQL注入。

Description (English)

Its sourcecode Society Management System is an open-source social management system. Version 1.0 of its sourcecode Society System contains an injection loophole in SQL, which results from an error in the parameter in the document/admin/delete expenses.php, which could lead to SQL injection.

Hazard Level

Medium

Vulnerability Type

SQL注入

Affected Vendor

itsourcecode

Published

2026-02-07

Last Modified

2026-02-24

References

https://github.com/zpf7029/oblong/issues/2 https://vuldb.com/?id.344690 https://vuldb.com/?ctiid.344690 https://itsourcecode.com/ https://vuldb.com/?submit.746797 https://access.redhat.com/security/cve/cve-2026-2115

Share on: