VDB

CNVD-2025-23330

CNVD-2025-23330 PUBLISHED

Employee Record Management System是一个员工记录管理系统。 Employee Record Management System存在SQL注入漏洞,该漏洞源于文件/editmyexp.php中参数emp3workduration缺少对外部输入SQL语句的验证。攻击者可利用该漏洞执行非法SQL命令窃取数据库敏感数据。

Timeline

  • Jun 6, 2025 CVE Published
Open in Interactive Console →
$ Console Community · 100/wk Open console ›