Submit #222266: Tongda OA Office System V11.10 and below、v2017 has SQL injection vulnerabilityinfo

TitelTongda OA Office System V11.10 and below、v2017 has SQL injection vulnerability
BeschreibungA vulnerability was found in Tongda OA Office System V11.10 and below、V2017. It been declared as critical. Affected by this issue is some unknow functionality of the file /manage/delete_query.php of the component General News. The manipulation of the argument $NEWS_ID leads to sql Injection.The attack may be launched information disclosure.
Quelle⚠️ https://github.com/Charmeeeeee/Tongda-OA-repo/blob/main/Tongda_OA_Vulnerability_Report.md
Benutzer
 HE1D1 (UID 56583)
Einreichung18.10.2023 05:36 (vor 3 Jahren)
Moderieren26.10.2023 07:28 (8 days later)
StatusAkzeptiert
VulDB Eintrag243588 [Tongda OA 2017 bis 11.10 General News /manage/delete_query.php NEWS_ID SQL Injection]
Punkte19

Might our Artificial Intelligence support you?

Check our Alexa App!