PT-2024-16495 · Tongda Oa · Tongda Oa

Name of the Vulnerable Software and Affected Versions: Tongda OA 2017 up to 11.10 Description: A critical issue has been found in Tongda OA, affecting an unknown functionality of the file /module/word model/view/index.php. The manipulation of the query str argument leads to SQL injection. The...

TONGDA Office Anywhere SQL注入漏洞

TONGDA Office Anywhere is a collaborative office OA system. A SQL injection vulnerability exists in TONGDA Office Anywhere 2017 11.10 and earlier versions, which stems from an SQL injection in the parameter whererepeat...

PT-2023-32796 · Tongda Oa · Tongda Oa

Name of the Vulnerable Software and Affected Versions: Tongda OA versions 2017 up to 11.10 Description: A critical issue affects an unknown functionality of the file general/vote/manage/delete.php. The manipulation of the DELETE STR argument leads to sql injection. The exploit has been disclosed ...

CVE-2023-5781

A vulnerability, which was classified as critical, has been found in Tongda OA 2017 11.10. This issue affects the function DELETESTR of the file general/system/resmanage/monitor/deletewebmail.php. The manipulation leads to sql injection. The attack may be initiated remotely. The exploit has been...

CVE-2023-5497

CVE-2023-5497 affects Tongda OA 2017 (version 11.10). The vulnerability is an SQL injection in the file general/hr/salary/welfare_manage/delete.php, triggered by manipulating the WELFARE_ID parameter. Impact is remote exploitation, with public disclosure of the exploit. The available connected do...