제출 #483344: esafenet CDG V5 SQL Injection정보

제목esafenet CDG V5 SQL Injection
설명A vulnerability classified as critical has been discovered in esafenet's CDG v5 product. The flowId parameter in the sdDoneDetail.jsp interface is not properly validated and sanitized, leading to a SQL injection vulnerability. An attacker can craft a malicious flowId parameter to execute arbitrary SQL queries, potentially accessing or modifying sensitive information in the database.
원천⚠️ https://github.com/Rain1er/report/blob/main/CDG/sdDoneDetail.md
사용자
 raindrop (UID 80297)
제출2025. 01. 16. AM 10:25 (1 년도 ago)
모더레이션2025. 01. 28. PM 03:34 (12 days later)
상태수락
VulDB 항목293915 [ESAFENET CDG V5 /sdDoneDetail.jsp flowId SQL 주입]
포인트들19

이전개요다음

Do you need the next level of professionalism?

Upgrade your account now!