| Título | esafenet CDG V5 SQL Injection |
|---|
| Descrição | A vulnerability classified as critical has been discovered in esafenet's CDG v5 product.
The following code (doneDetail.jsp) contains an SQL injection vulnerability in the flowId parameter. An attacker can exploit this vulnerability to construct malicious SQL queries, potentially accessing or manipulating sensitive information in the database.
|
|---|
| Fonte | ⚠️ https://github.com/Rain1er/report/blob/main/CDG/doneDetail.md |
|---|
| Utilizador | raindrop (UID 80297) |
|---|
| Submissão | 16/01/2025 10h23 (há 1 Ano) |
|---|
| Moderação | 28/01/2025 15h34 (12 days later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 293913 [ESAFENET CDG V5 /doneDetail.jsp flowId Injeção SQL] |
|---|
| Pontos | 18 |
|---|