CNNVD-202602-607 Information

CNNVD ID

CNNVD-202602-607

Related CVE

CVE-2025-69215

• CNNVD Published: 2026-02-04

Description (Chinese)

OpenSTAManager是Devcode开源的一个用于技术援助和计费的开源管理软件。 OpenSTAManager 2.9.8及之前版本存在SQL注入漏洞，该漏洞源于Stampe模块存在SQL注入漏洞，可能导致未经授权的数据库访问。

Description (English)

OpenSTAManager is an open source management software for technical assistance and costing from Devcode. OpenSTAManager 2.9.8 and previous versions had an SQL injection loophole, which stemmed from the SQL injection gap in the Stampe module and could lead to unauthorized database access.

Hazard Level

High

Vulnerability Type

SQL注入

Affected Vendor

Devcode

Published

2026-02-04

Last Modified

2026-02-24

References

https://github.com/devcode-it/openstamanager/security/advisories/GHSA-qx9p-w3vj-q24q https://access.redhat.com/security/cve/cve-2025-69215