CVE-2025-2831 Information

Description

A vulnerability has been found in mingyuefusu ???? tushuguanlixitong ?????? up to d4836f6b49cd0ac79a4021b15ce99ff7229d4694 and classified as critical. This vulnerability affects the function getBookList of the file /admin/bookList?page=1&limit=10. The manipulation of the argument condition leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Reference

https://gitee.com/mingyuefusu/tushuguanlixitong/issues/IBTSJL https://gitee.com/mingyuefusu/tushuguanlixitong/issues/IBTSJL https://vuldb.com/?ctiid.301468 https://vuldb.com/?id.301468 https://vuldb.com/?submit.521458