| Title | esafenet CDG V5.6.3.154.205_20250114 RCE |
|---|
| Description | A SQL injection vulnerability was discovered in the UnChkMailApplication.jsp endpoint, specifically in the typename parameter. This vulnerability allows an unauthenticated attacker to execute arbitrary code on the MSSQL server, potentially gaining full control over the server. |
|---|
| Source | ⚠️ https://github.com/Rain1er/report/blob/main/CDG/NA%3D%3D.md |
|---|
| User | XU NIE (UID 82414) |
|---|
| Submission | 03/24/2025 03:47 (1 Year ago) |
|---|
| Moderation | 04/07/2025 12:10 (14 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 303645 [ESAFENET CDG 5.6.3.154.205_20250114 UnChkMailApplication.jsp typename sql injection] |
|---|
| Points | 17 |
|---|