Soumettre #617844: Shanghai Lingdang Information Technology Co., Ltd Ling Dang CRM <= V8.6.5.2.23 SQL Injectioninformation

TitreShanghai Lingdang Information Technology Co., Ltd Ling Dang CRM <= V8.6.5.2.23 SQL Injection
DescriptionIn versions of LingDang CRM earlier than 8.6.5.2.23, a vulnerability classified as severe has been discovered. This affects an unknown part of the file yunzhijiaApi.php. Manipulating the parameter user_list leads to SQL injection.
La source⚠️ https://github.com/jackyliu666/blob01/blob/main/README.md
Utilisateur
 paatiw (UID 32385)
Soumission17/07/2025 20:41 (il y a 9 mois)
Modérer30/07/2025 11:54 (13 days later)
StatutAccepté
Entrée VulDB318295 [Shanghai Lingdang Information Technology Lingdang CRM jusqu’à 8.6.4.7 yunzhijiaApi.php delete_user function injection SQL]
Points17

PrécédentAperçuSuivant

Do you want to use VulDB in your project?

Use the official API to access entries easily!