A critical SQL injection vulnerability in glorylion JFinalOA 1.0.2 allows remote attackers to manipulate the 'id' argument in SysOrg.java, leading to remote code execution
Reporter | Title | Published | Views | Family All 3 |
---|---|---|---|---|
![]() | Sql injection | 9 Feb 202311:15 | – | prion |
![]() | CVE-2023-0758 glorylion JFinalOA SysOrg.java sql injection | 9 Feb 202310:59 | – | cvelist |
![]() | CVE-2023-0758 | 9 Feb 202311:15 | – | nvd |
[
{
"vendor": "glorylion",
"product": "JFinalOA",
"versions": [
{
"version": "1.0.2",
"status": "affected"
}
]
}
]
Source | Link |
---|---|
vuldb | www.vuldb.com/ |
vuldb | www.vuldb.com/ |
github | www.github.com/skisw/Vul/blob/main/vuloa |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo