Lucene search
China National Vulnerability DatabaseCNVD-2022-17989HistoryFeb 16, 2022 - 12:00 a.m.
Tongda2000 SQL Injection Vulnerability
2022-02-1600:00:00
China National Vulnerability Database
www.cnvd.org.cn
12
0.002 Low
EPSS
Percentile
54.6%
A SQL injection vulnerability exists in Tongda2000, a web-based intelligent office system from China Tongda, which originates from the d_name parameter in the productβs export_data.php file that does not securely handle special characters in user input data. An attacker can execute malicious SQL statements through this vulnerability.
| CPE | Name | Operator | Version |
|---|---|---|---|
| Tongda Tongda2000 v | eq | 11.10 |
Related
prion
prion
Sql injection
2022-02-14 21:15:00
cvelist
cvelist
CVE-2022-23902
2022-02-14 20:18:15
nvd
nvd
CVE-2022-23902
2022-02-14 21:15:09
cve
cve
CVE-2022-23902
2022-02-14 21:15:09