ଜମା କରନ୍ତୁ #433500: Beijing Tongda Xinke Technology Co., Ltd Tongda OA v2017-v11.10 SQL injectionସୂଚନା

ଶୀର୍ଷକBeijing Tongda Xinke Technology Co., Ltd Tongda OA v2017-v11.10 SQL injection
ବର୍ଣ୍ଣନାgeneral/approve_center/query/list/input_form/delete_data_attach.php $RUN-ID parameter not processed properly causing SQL injection
ଉତ୍ସ⚠️ https://github.com/LvZCh/td/issues/6
ଉପଭୋକ୍ତା
 LVZC1 (UID 76422)
ଦାଖଲ10/29/2024 09:27 AM (1 ବର୍ଷ ago)
ମଧ୍ୟମ ଧରଣର10/31/2024 04:52 PM (2 days later)
ସ୍ଥିତିଗ୍ରହଣ କରାଯାଇଛି
VulDB ଏଣ୍ଟ୍ରି282626 [Tongda OA 2017 ଯେପର୍ଯ୍ୟନ୍ତ 11.10 delete_data_attach.php RUN_ID SQL ଇଞ୍ଜେକ୍ସନ]
ପଏଣ୍ଟ16

ପଛକୁସମୀକ୍ଷାଆହୁରି ଦୂରରେ

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!