| タイトル | Fuzhou Yinda Yunchuang Information Technology Smart Integrated Management Platform System 7.5 SQL Injection |
|---|
| 説明 | An unauthenticated time-based blind SQL injection vulnerability in the Smart Integrated Management Platform System developed by Fuzhou Yinda Yunchuang Information Technology Co., Ltd. allows remote attackers to execute arbitrary SQL queries and access sensitive database information.
The vulnerability affects version 7.5 and has been observed across a large number of exposed instances, significantly increasing the potential attack surface. |
|---|
| ソース | ⚠️ https://github.com/luoye197-prog/cve-yinda-sql |
|---|
| ユーザー | lanmeik (UID 95270) |
|---|
| 送信 | 2026年02月06日 12:02 (4 月 ago) |
|---|
| モデレーション | 2026年02月19日 18:17 (13 days later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 346945 [Fujian Smart Integrated Management Platform System 迄 7.5 XAccessPermissionPlus.ashx DeviceIDS SQLインジェクション] |
|---|
| ポイント | 20 |
|---|