CVE-2024-0938 Tongda OA 2017 delete_webmail.php sql injection

A vulnerability, which was classified as critical, was found in Tongda OA 2017 up to 11.9. This affects an unknown part of the file /general/email/inbox/deletewebmail.php. The manipulation of the argument WEBBODYIDSTR leads to sql injection. The exploit has been disclosed to the public and may be...

CVE-2023-5781

A vulnerability, which was classified as critical, has been found in Tongda OA 2017 11.10. This issue affects the function DELETESTR of the file general/system/resmanage/monitor/deletewebmail.php. The manipulation leads to sql injection. The attack may be initiated remotely. The exploit has been...

TONGDA Office Anywhere SQL Injection Vulnerability

TONGDA Office Anywhere is a collaborative office OA system. A security vulnerability exists in TONGDA Office Anywhere 2017 version 11.10, which originates from a SQL injection vulnerability in the function DELETESTR in the file DELETEwebmail.php...

PT-2023-32320 · Tongda Oa · Tongda Oa

Name of the Vulnerable Software and Affected Versions: Tongda OA 2017 version 11.10 Description: A critical issue has been found in Tongda OA, affecting the function DELETE STR of the file general/system/res manage/monitor/delete webmail.php. This issue leads to SQL injection and can be initiated...