Submit #433500: Beijing Tongda Xinke Technology Co., Ltd Tongda OA v2017-v11.10 SQL injectioninfo

TitleBeijing Tongda Xinke Technology Co., Ltd Tongda OA v2017-v11.10 SQL injection
Descriptiongeneral/approve_center/query/list/input_form/delete_data_attach.php $RUN-ID parameter not processed properly causing SQL injection
Source⚠️ https://github.com/LvZCh/td/issues/6
User
 LVZC1 (UID 76422)
Submission10/29/2024 09:27 AM (3 months ago)
Moderation10/31/2024 04:52 PM (2 days later)
StatusAccepted
VulDB Entry282626 [Tongda OA 2017 up to 11.10 delete_data_attach.php RUN_ID sql injection]
Points16

Interested in the pricing of exploits?

See the underground prices here!