Invia #345311: Chanjet Smooth T+system V3.5 SQL Injectioninformazioni

TitoloChanjet Smooth T+system V3.5 SQL Injection
DescrizioneDue to the lack of filtering and verification of user input at the keyEdit.aspx interface of Changjietong T+, unauthenticated attackers can not only exploit SQL injection vulnerabilities to obtain information from the database (such as administrator backend passwords, user personal information of the site), but even write Trojans to the server in high permission situations to further gain server system privileges.
Fonte⚠️ https://github.com/vulreport3r/cve-reports/blob/main/There_is_a_SQL_injection_vulnerability_in_the_Changjietong_T%2Bsystem/report.md
Utente
 Zhou Jiaming (UID 69510)
Sottomissione27/05/2024 12:08 (2 anni fa)
Moderazione05/06/2024 17:44 (9 days later)
StatoAccettato
Voce VulDB267185 [Chanjet Smooth T+system 3.5 keyEdit.aspx KeyID iniezione SQL]
Punti19

PrecedenteVisione D'ensembleIl prossimo

Do you need the next level of professionalism?

Upgrade your account now!