提交 #222266: Tongda OA Office System V11.10 and below、v2017 has SQL injection vulnerability信息

标题Tongda OA Office System V11.10 and below、v2017 has SQL injection vulnerability
描述A vulnerability was found in Tongda OA Office System V11.10 and below、V2017. It been declared as critical. Affected by this issue is some unknow functionality of the file /manage/delete_query.php of the component General News. The manipulation of the argument $NEWS_ID leads to sql Injection.The attack may be launched information disclosure.
来源⚠️ https://github.com/Charmeeeeee/Tongda-OA-repo/blob/main/Tongda_OA_Vulnerability_Report.md
用户
 HE1D1 (UID 56583)
提交2023-10-18 05時36分 (3 年前)
管理2023-10-26 07時28分 (8 days later)
状态已接受
VulDB条目243588 [Tongda OA 2017 直到 11.10 General News /manage/delete_query.php NEWS_ID SQL注入]
积分19

Do you know our Splunk app?

Download it now for free!