| Titre | Das Parking Management System 6.2.0 SQL Injection |
|---|
| Description | A SQL INJECTION vulnerability exists in the " 停车场管理系统 ".The system's API 'IntraFieldVehicle/Search ' is vulnerable to unauthorized access ,allowing unauthenticated users to exploit certain interfaces and retrieve sensitive user data posing a critical security risk. The manipulation of the argument 'Value' leads to sql injection. |
|---|
| La source | ⚠️ https://github.com/K-mxredo/MXdocument/blob/K-mxredo-blob/%E5%81%9C%E8%BD%A6%E5%9C%BA%E7%B3%BB%E7%BB%9FIntraFieldVehicle-Search.md |
|---|
| Utilisateur | SecHZredo (UID 81966) |
|---|
| Soumission | 06/06/2025 06:34 (il y a 1 Année) |
|---|
| Modérer | 15/06/2025 12:12 (9 days later) |
|---|
| Statut | Accepté |
|---|
| Entrée VulDB | 312585 [Das Parking Management System 停车场管理系统 6.2.0 API Search Valeur injection SQL] |
|---|
| Points | 18 |
|---|