EUVD-2024-17012

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Critical vulnerability in Tongda OA 2017 allows SQL injection via delete.php argument manipulation

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2024-1251	6 Feb 202417:31	–	circl
CNNVD	TONGDA Office Anywhere SQL Injection Vulnerability	6 Feb 202400:00	–	cnnvd
CVE	CVE-2024-1251	6 Feb 202416:00	–	cve
Cvelist	CVE-2024-1251 Tongda OA 2017 delete.php sql injection	6 Feb 202416:00	–	cvelist
NVD	CVE-2024-1251	6 Feb 202416:15	–	nvd
Prion	Sql injection	6 Feb 202416:15	–	prion
Positive Technologies	PT-2024-17634 · Tongda Oa · Tongda Oa	6 Feb 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-1251	23 May 202509:40	–	redhatcve
Vulnrichment	CVE-2024-1251 Tongda OA 2017 delete.php sql injection	6 Feb 202416:00	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "784c0616-6c16-3f97-a600-69dd8d502b59",
        "vendor": {
          "name": "Tongda"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "1416f024-213e-391c-838c-fc5b710e0e75",
        "product": {
          "name": "OA 2017"
        },
        "product_version": "11.7"
      },
      {
        "id": "48f60dfe-53cd-38a5-96d4-55fba25abb6f",
        "product": {
          "name": "OA 2017"
        },
        "product_version": "11.8"
      },
      {
        "id": "4df63c7c-8347-38e7-8b7b-ed75c3b761b1",
        "product": {
          "name": "OA 2017"
        },
        "product_version": "11.6"
      },
      {
        "id": "4fac64a6-1f5f-3a29-bfd2-0a9c7d07bb0d",
        "product": {
          "name": "OA 2017"
        },
        "product_version": "11.2"
      },
      {
        "id": "60bac6e5-42df-3690-ac00-d35e3d6a456f",
        "product": {
          "name": "OA 2017"
        },
        "product_version": "11.9"
      },
      {
        "id": "7f18f932-d0a0-3e6f-a0f1-d91236017bd0",
        "product": {
          "name": "OA 2017"
        },
        "product_version": "11.10"
      },
      {
        "id": "cc6523a9-e569-3e2e-bc3a-f9899eabc4b6",
        "product": {
          "name": "OA 2017"
        },
        "product_version": "11.3"
      },
      {
        "id": "d0403d43-3498-3769-acd6-8c57a1a542b5",
        "product": {
          "name": "OA 2017"
        },
        "product_version": "11.0"
      },
      {
        "id": "e5ee6148-f503-3ba1-a5e1-ed54f875dfe9",
        "product": {
          "name": "OA 2017"
        },
        "product_version": "11.4"
      },
      {
        "id": "eb5702fa-0613-3653-9cc4-5473ffaa6768",
        "product": {
          "name": "OA 2017"
        },
        "product_version": "11.5"
      },
      {
        "id": "ed20ba37-5e1c-352d-be79-3716f56a2829",
        "product": {
          "name": "OA 2017"
        }
      },
      {
        "id": "ffc7ddbc-8849-3e55-a772-f430f19286a0",
        "product": {
          "name": "OA 2017"
        },
        "product_version": "11.1"
      }
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
github	www.github.com/rockersiyuan/CVE/blob/main/TongDa%20Sql%20inject.md

03 Oct 2025 20:07Current

6.1Medium risk

Vulners AI Score6.1

CVSS 3.15.5 - 9.8

CVSS 25.2

CVSS 35.5

EPSS0.00052

SSVC