3 matches found
SQL Injection Vulnerability in Penta Digital Campus System folder Parameter
Penta Digital Campus System is using the technology platform of .NET+SqlServer. A SQL injection vulnerability exists in the /BG/Mail/UMessageView.aspx page of Pangda Digital Campus System. The lack of filtering of the 'folder' parameter allows an attacker to exploit the vulnerability to obtain...
SQL Injection Vulnerability in type=Detail&FileId Parameter of Penta Digital Campus System
Penta Digital Campus System is using the technology platform of .NET+SqlServer. A SQL injection vulnerability exists in the /BG/GRBG/FileManage/FileUPload.aspx page of Pangda Digital Campus System. The lack of filtering of the 'id' parameter allows an attacker to exploit the vulnerability to obta...
SQL Injection Vulnerability in id Parameter of Penta Digital Campus System
Penta Digital Campus System is using the technology platform of .NET+SqlServer. SQL injection vulnerability exists in the /BG/ToDo/ToDoDetail.aspx and /BG/Txl/TxlDetail.aspx pages of the Pangda Digital Campus System. The lack of filtering of the 'id' parameter allows an attacker to exploit the...