Submit #483344: esafenet CDG V5 SQL Injectioninfo

Titelesafenet CDG V5 SQL Injection
BeschreibungA vulnerability classified as critical has been discovered in esafenet's CDG v5 product. The flowId parameter in the sdDoneDetail.jsp interface is not properly validated and sanitized, leading to a SQL injection vulnerability. An attacker can craft a malicious flowId parameter to execute arbitrary SQL queries, potentially accessing or modifying sensitive information in the database.
Quelle⚠️ https://github.com/Rain1er/report/blob/main/CDG/sdDoneDetail.md
Benutzer
 raindrop (UID 80297)
Einreichung16.01.2025 10:25 (vor 1 Jahr)
Moderieren28.01.2025 15:34 (12 days later)
StatusAkzeptiert
VulDB Eintrag293915 [ESAFENET CDG V5 /sdDoneDetail.jsp flowId SQL Injection]
Punkte19

ZurückÜbersichtWeiter

Might our Artificial Intelligence support you?

Check our Alexa App!