| Titel | Beijing Tongda Xinke Technology Co., Ltd. Tongda OA versions below v11.10 and v2017 SQL injection |
|---|
| Beschreibung | Beijing Tongda Xinke Technology Co., Ltd. is a wholly-owned subsidiary of China Ordnance Industry Information Center. It is a high-tech enterprise whose main business is management software research and development, implementation, service and consulting. It is affiliated to China Ordnance Industry Group Corporation, a Fortune 500 company. Tongda OA developed by the company has a SQL injection vulnerability, which allows attackers to obtain sensitive information in the database, causing data leakage and harming user information security. |
|---|
| Quelle | ⚠️ https://github.com/Yu1e/vuls/blob/main/SQL%20injection%20vulnerability%20exists%20in%20Tongda%20OA.md |
|---|
| Benutzer | yu1e (UID 61631) |
|---|
| Einreichung | 17.01.2024 13:26 (vor 2 Jahren) |
|---|
| Moderieren | 26.01.2024 12:01 (9 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 252183 [Tongda OA 2017 bis 11.9 delete_webmail.php WEBBODY_ID_STR SQL Injection] |
|---|
| Punkte | 20 |
|---|