2 matches found
CVE-2026-1449
CVE-2026-1449 affects Hisense TransTech Smart Bus Management System up to 20260113. The vulnerability is in YZSoft/Forms/XForm/BM/BusComManagement/TireMng.aspx, Page_Load, where manipulation of the request argument key can trigger a SQL injection. Remote exploitation is possible, and an exploit h...
CVE-2026-1449 Hisense TransTech Smart Bus Management System TireMng.aspx Page_Load sql injection
A flaw has been found in Hisense TransTech Smart Bus Management System up to 20260113. Affected is the function PageLoad of the file YZSoft/Forms/XForm/BM/BusComManagement/TireMng.aspx. Executing a manipulation of the argument key can lead to sql injection. It is possible to launch the attack...