Submit #433499: Beijing Tongda Xinke Technology Co., Ltd Tongda OA v2017-v11.9 SQL injectioninfo

TitleBeijing Tongda Xinke Technology Co., Ltd Tongda OA v2017-v11.9 SQL injection
Descriptiongeneral/approve_center/list/input_form/data_picker_link.php The $dataSrc parameter was not processed properly, resulting in SQL injection
Source⚠️ https://github.com/LvZCh/td/issues/5
User
 LVZC1 (UID 76422)
Submission10/29/2024 09:26 (2 years ago)
Moderation10/31/2024 16:25 (2 days later)
StatusAccepted
VulDB entry282614 [Tongda OA 2017 up to 11.9 data_picker_link.php dataSrc sql injection]
Points16

PreviousOverviewNext

Do you want to use VulDB in your project?

Use the official API to access entries easily!