EUVD-2024-16717

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Critical vulnerability in Tongda OA 2017 leading to SQL injection; upgrade to version 11.10 recommended.

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2024-0938	26 Jan 202419:31	–	circl
CNNVD	TONGDA Office Anywhere SQL Injection Vulnerability	26 Jan 202400:00	–	cnnvd
CVE	CVE-2024-0938	26 Jan 202418:00	–	cve
Cvelist	CVE-2024-0938 Tongda OA 2017 delete_webmail.php sql injection	26 Jan 202418:00	–	cvelist
NVD	CVE-2024-0938	26 Jan 202418:15	–	nvd
Prion	Sql injection	26 Jan 202418:15	–	prion
RedhatCVE	CVE-2024-0938	23 May 202509:32	–	redhatcve
Vulnrichment	CVE-2024-0938 Tongda OA 2017 delete_webmail.php sql injection	26 Jan 202418:00	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "b619e1a0-fb11-3cf2-a05e-d5e2a36be9db",
        "vendor": {
          "name": "Tongda"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "0bd71db6-db76-3fab-97f9-42d9639b2189",
        "product": {
          "name": "OA 2017"
        },
        "product_version": "11.7"
      },
      {
        "id": "21085013-4780-3c99-af17-4f7bb50a2fec",
        "product": {
          "name": "OA 2017"
        }
      },
      {
        "id": "2143c65b-8b54-371e-897f-e53d3fe44816",
        "product": {
          "name": "OA 2017"
        },
        "product_version": "11.8"
      },
      {
        "id": "25567586-c84e-32af-8694-4748df2ff053",
        "product": {
          "name": "OA 2017"
        },
        "product_version": "11.1"
      },
      {
        "id": "2e1dcc14-8b1d-3987-8cbf-71dbfb78e91a",
        "product": {
          "name": "OA 2017"
        },
        "product_version": "11.0"
      },
      {
        "id": "31516ff0-f135-35e4-a39e-015facd90ccc",
        "product": {
          "name": "OA 2017"
        },
        "product_version": "11.9"
      },
      {
        "id": "7e7a3e1f-5f00-3248-8e5a-63fdcd8171b9",
        "product": {
          "name": "OA 2017"
        },
        "product_version": "11.4"
      },
      {
        "id": "adcbfe7a-24df-335f-b3f2-a72b3a431494",
        "product": {
          "name": "OA 2017"
        },
        "product_version": "11.6"
      },
      {
        "id": "bde8c7c3-1ae8-3940-80c8-cdc48bbe5b3d",
        "product": {
          "name": "OA 2017"
        },
        "product_version": "11.2"
      },
      {
        "id": "d96b5fcb-3c53-3132-a44f-a81aefd8a6d7",
        "product": {
          "name": "OA 2017"
        },
        "product_version": "11.5"
      },
      {
        "id": "e4ca47ea-76a8-3009-9257-a3aeb47c5301",
        "product": {
          "name": "OA 2017"
        },
        "product_version": "11.3"
      }
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
github	www.github.com/Yu1e/vuls/blob/main/SQL%20injection%20vulnerability%20exists%20in%20Tongda%20OA.md

03 Oct 2025 20:07Current

6.1Medium risk

Vulners AI Score6.1

CVSS 3.15.5 - 9.8

CVSS 25.2

CVSS 35.5

EPSS0.00062

SSVC