Lucene search
K

5 matches found

CNVD
CNVD
added 2022/02/28 12:0 a.m.23 views

Tongda2000 SQL Injection Vulnerability (CNVD-2022-71114)

Tongda2000 is a web-based intelligent office system from Tongda, China. a SQL injection vulnerability exists in Tongda2000 v11.10, which stems from the product's failure to effectively filter the special characters in the DELETESTR parameter of the delete.php file. An attacker could use this...

9.8CVSS5.5AI score0.01013EPSS
Exploits0References1
CNVD
CNVD
added 2022/02/16 12:0 a.m.24 views

Tongda2000 SQL Injection Vulnerability

A SQL injection vulnerability exists in Tongda2000, a web-based intelligent office system from China Tongda, which originates from the dname parameter in the product's exportdata.php file that does not securely handle special characters in user input data. An attacker can execute malicious SQL...

9.8CVSS5AI score0.01213EPSS
Exploits1References1
CNVD
CNVD
added 2021/08/31 12:0 a.m.17 views

SQL injection vulnerability exists in Tongda OA (CNVD-2021-73171)

OA Office Anywhere Network Intelligent Office System is a collaborative office automation software independently developed by Beijing Tongda Xinke Technology Co. There is a SQL injection vulnerability in Tongda OA, attackers can use the vulnerability to obtain sensitive information in the databas...

3.5AI score
Exploits0Affected Software1
CNVD
CNVD
added 2016/10/11 12:0 a.m.2 views

SQL Injection Vulnerability in Wave OA Intelligent Office Platform

Longchamp Yunhai OA Intelligent Office Platform is aimed at the private and hybrid cloud market, providing open and secure enterprise-class cloud data center operation and maintenance management capabilities. SQL injection vulnerability exists in the Wave OA Office system, allowing attackers to...

7.9AI score
Exploits0
seebug.org
seebug.org
added 2016/05/09 12:0 a.m.27 views

Office Anywhere 网络智能办公系统某版本前台获取数据库(无需登录)

简要描述: Office Anywhere 网络智能办公系统某版本前台获取数据库(无需登录) 详细说明: Office Anywhere 2011 网络智能办公系统 存在一个通用路径泄漏问题,而泄漏的登录地址可以不需要权限登录到phpmyadmin 且权限为root /mysql/main.php 解密出来可直接登录,这里就不登录进去了 漏洞证明: 附部分案例: http://218.24.163.216:8080/ http://220.171.81.126:1234/ http://221.2.43.9:8000/ http://221.204.213.24/...

7.1AI score
Exploits0
Rows per page
Query Builder