CVE-2025-60267 | THREATINT

Description

In xckk v9.6, there is a SQL injection vulnerability in which the cond parameter in notice/list is not securely filtered, resulting in a SQL injection vulnerability.

PUBLISHED Reserved 2025-09-26 | Published 2025-10-09 | Updated 2025-10-09 | Assigner mitre

References

gitee.com/bestfeng/xckk

github.com/int-ux/report/issues/3

cve.org (CVE-2025-60267)

nvd.nist.gov (CVE-2025-60267)

Download JSON