提交 #433532: Beijing Tongda Xinke Technology Co., Ltd Tongda OA v2017-v11.10 SQL injection
| 标题 | Beijing Tongda Xinke Technology Co., Ltd Tongda OA v2017-v11.10 SQL injection |
|---|---|
| 描述 | module/word_model/view/index.php The $query_str and $DOT_TPL-STR parameters were not processed properly, resulting in SQL injection |
| 来源 | ⚠️ https:/ |
| 用户 | LVZC2 (UID 76821) |
| 提交 | 2024-10-29 09時55分 (1 年前) |
| 管理 | 2024-11-02 17時27分 (4 days later) |
| 状态 | 已接受 |
| VulDB条目 | 282901 [Tongda OA 2017 直到 11.10 index.php query_str SQL注入] |
| 积分 | 16 |