| Titel | Hangzhou Xiongwei Technology Development Co., Ltd Smart Catering Cloud Platform 2.1.6446.28761 SQL injection |
|---|
| Beschreibung | There is an SQL injection vulnerability in the interface of Hangzhou Xiongwei Technology Development Co., Ltd. - Smart Catering Cloud Platform/dishtrade/dish_trade_detail_get, which can be used to obtain database information and permissions |
|---|
| Quelle | ⚠️ https://github.com/zhangbuneng/3/issues/1 |
|---|
| Benutzer | yaozhangYiqiyin (UID 81367) |
|---|
| Einreichung | 13.10.2025 09:12 (vor 8 Monaten) |
|---|
| Moderieren | 16.12.2025 09:00 (2 months later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 336607 [Xiongwei Smart Catering Cloud Platform 2.1.6446.28761 dish_trade_detail_get filter SQL Injection] |
|---|
| Punkte | 17 |
|---|