| Название | esafenet CDG V5 SQL Injection |
|---|
| Описание | A vulnerability classified as critical has been discovered in esafenet's CDG v5 product.
The following code (doneDetail.jsp) contains an SQL injection vulnerability in the flowId parameter. An attacker can exploit this vulnerability to construct malicious SQL queries, potentially accessing or manipulating sensitive information in the database.
|
|---|
| Источник | ⚠️ https://github.com/Rain1er/report/blob/main/CDG/doneDetail.md |
|---|
| Пользователь | raindrop (UID 80297) |
|---|
| Представление | 16.01.2025 10:23 (1 Год назад) |
|---|
| Модерация | 28.01.2025 15:34 (12 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 293913 [ESAFENET CDG V5 /doneDetail.jsp flowId SQL-инъекция] |
|---|
| Баллы | 18 |
|---|