Polaris Intellect Core Banking SQL注入漏洞

Polaris Intellect Core Banking is an application from Polaris, Inc. A security vulnerability exists in Polaris Intellect Core Banking version 9.5, which stems from input passed via the groupType parameter in /SCGController being incorrectly processed before being used in an SQL query...

PT-2025-3125 · Polaris Ft · Polaris Ft Intellect Core Banking

Name of the Vulnerable Software and Affected Versions: Polaris FT Intellect Core Banking version 9.5 Description: An issue was discovered in the Interllect Core Search, where input passed through the groupType parameter in "/SCGController" is mishandled before being used in SQL queries, allowing...