| Title | Fujian Kelixin Communication Co., Ltd. Command and Dispatch Platform Command and Dispatch Platform SQL Injection |
|---|
| Description | here is a SQL injection vulnerability in the command and dispatch platform of Fujian Kelixun Communications Co., Ltd. An attacker can use this vulnerability to operate on sensitive data in the database. There is a sql injection vulnerability in the value of parameter uuid, The vulnerability path is: api/client/user/pwd_update.php. |
|---|
| Source | ⚠️ https://h0e4a0r1t.github.io/2024/vulns/Fujian%20Kelixin%20Communication%20Co.,%20Ltd.%20Command%20and%20Dispatch%20Platform%20SQL%20Injection%20Vulnerability-pwd_update.php.pdf |
|---|
| User | H0e4a0r1t (UID 65358) |
|---|
| Submission | 03/18/2024 06:38 (2 years ago) |
|---|
| Moderation | 03/18/2024 20:01 (13 hours later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 257198 [Fujian Kelixin Communication Command and Dispatch Platform up to 20240318 pwd_update.php uuid sql injection] |
|---|
| Points | 19 |
|---|