| 标题 | ibos oa v4.5.5 subject parameter has SQL injection vulnerability |
|---|
| 描述 | A serious vulnerability has been found in ibosoa. SQL injection exists in subject parameters of ibosoa v4.5.5 and below. An attacker can obtain all sensitive information of the database through error injection.A serious vulnerability has been found in ibosoa. SQL injection exists in subject parameters of ibosoa v4.5.5 and below. An attacker can obtain all sensitive information of the database through error injection. |
|---|
| 来源 | ⚠️ https://gitee.com/wkstestete/cve/blob/master/sql/ibos%20sql%20injection2.md |
|---|
| 用户 | wkstestete (UID 43375) |
|---|
| 提交 | 2023-03-21 06時00分 (3 年前) |
|---|
| 管理 | 2023-03-31 12時42分 (10 days later) |
|---|
| 状态 | 重复 |
|---|
| VulDB条目 | 224630 [IBOS 4.5.5 Report Search /?r=report/api/getlist SQL注入] |
|---|
| 积分 | 0 |
|---|