| タイトル | Chanjet Information Technology Company Limited Chanjet CRM Chanjet CRM SQL Injection |
|---|
| 説明 | Chanjet Information Technology Co., Ltd.'s CRM system is affected by an SQL injection vulnerability. Attackers can exploit this vulnerability to access database information, leading to the leakage of sensitive data.
Important: Do not include cookies when reproducing the vulnerability.
Tools like Burp Suite or SQLMap should not carry cookies during testing. Use the provided POC directly.
The vulnerability is sensitive to network conditions. Responses may be slow, so retrying with packet capture is recommended.
Ensure the request packet includes two blank lines at the end. |
|---|
| ソース | ⚠️ https://github.com/ClausiusFan/CVE/blob/main/CVE_1.md |
|---|
| ユーザー | Clausius Fan (UID 85102) |
|---|
| 送信 | 2025年05月10日 14:09 (11 月 ago) |
|---|
| モデレーション | 2025年05月24日 19:47 (14 days later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 310240 [Chanjet CRM 迄 20250510 gblOrgID SQLインジェクション] |
|---|
| ポイント | 20 |
|---|