2 matches found
SQL Injection Vulnerability in id Parameter of Digital Campus Management System of Shanghai Pengda Computer System Development Co.
The digital campus system of Shanghai Pengda Computer System Development Co., Ltd. is a technology platform using .NET+SqlServer. SQL injection vulnerability exists in the /BG/ToDo/ToDoDetail.aspx and /BG/Txl/TxlDetail.aspx pages of the Digital Campus Management System of Shanghai Pengda Computer...
SQL Injection Vulnerability in id Parameter of Penta Digital Campus System
Penta Digital Campus System is using the technology platform of .NET+SqlServer. SQL injection vulnerability exists in the /BG/ToDo/ToDoDetail.aspx and /BG/Txl/TxlDetail.aspx pages of the Pangda Digital Campus System. The lack of filtering of the 'id' parameter allows an attacker to exploit the...