12 matches found
EUVD-2023-59361
Malicious code in bioql PyPI...
CVE-2023-7020
A vulnerability was found in Tongda OA 2017 up to 11.9 and classified as critical. This issue affects some unknown processing of the file general/wiki/cp/ct/view.php. The manipulation of the argument TEMPID leads to sql injection. The attack may be initiated remotely. The exploit has been disclos...
CVE-2023-7021
A vulnerability was found in Tongda OA 2017 up to 11.9. It has been classified as critical. Affected is an unknown function of the file general/vehicle/checkup/deletesearch.php. The manipulation of the argument VUID leads to sql injection. It is possible to launch the attack remotely. The exploit...
CVE-2023-6608
A vulnerability was found in Tongda OA 2017 up to 11.9 and classified as critical. Affected by this issue is some unknown functionality of the file general/notify/manage/delete.php. The manipulation of the argument DELETESTR leads to sql injection. The exploit has been disclosed to the public and...
PT-2023-32712 · Tongda Oa · Tongda Oa
Name of the Vulnerable Software and Affected Versions: Tongda OA 2017 versions up to 11.9 Description: A critical issue was found in some unknown functionality of the file general/notify/manage/delete.php. The manipulation of the DELETE STR argument leads to sql injection. The issue has been...
PT-2023-32589 · Tongda · Tongda Oa
Name of the Vulnerable Software and Affected Versions: Tongda OA 2017 versions up to 11.9 Description: A critical issue has been found in the file general/wiki/cp/ct/delete.php, where the manipulation of the PROJ ID STR argument leads to sql injection. This issue can be initiated remotely. The...
Sql injection
A vulnerability, which was classified as critical, has been found in Tongda OA 2017 up to 11.9. Affected by this issue is some unknown functionality of the file general/system/censorwords/manage/delete.php. The manipulation of the argument DELETESTR leads to sql injection. The exploit has been...
CVE-2023-6052
A vulnerability classified as critical has been found in Tongda OA 2017 up to 11.9. Affected is an unknown function of the file general/system/censorwords/module/delete.php. The manipulation of the argument DELETESTR leads to sql injection. The exploit has been disclosed to the public and may be...
PT-2023-7016 · Tongda Oa · Tongda Oa
Name of the Vulnerable Software and Affected Versions: Tongda OA 2017 up to 11.9 Description: A critical vulnerability has been found in Tongda OA, related to the file general/system/censor words/module/delete.php. The issue is due to the lack of protection against SQL injection when handling the...
PT-2023-32258 · Tongda · Tongda Oa 2017
Name of the Vulnerable Software and Affected Versions: Tongda OA 2017 versions prior to 11.10 Description: A critical vulnerability has been found in Tongda OA 2017, affecting the file general/hr/training/record/delete.php. The manipulation of the RECORD ID argument leads to sql injection. The...
PT-2023-31988 · Tongda · Tongda Oa 2017
Name of the Vulnerable Software and Affected Versions: Tongda OA 2017 versions prior to 11.10 Description: A critical vulnerability has been found in Tongda OA 2017, affecting the file general/hr/recruit/hr pool/delete.php. The manipulation of the EXPERT ID argument leads to sql injection. The...
PT-2023-31986 · Tongda · Tongda Oa 2017
Name of the Vulnerable Software and Affected Versions: Tongda OA 2017 versions prior to 11.10 Description: A critical issue has been found in Tongda OA 2017, affecting some unknown functionality of the file general/hr/manage/staff transfer/delete.php. The manipulation of the TRANSFER ID argument...