3 matches found
Beijing network up letter from Unicom to use the electronic procurement system more than a dozen of SQL injection
No description provided by source...
一采通电子采购系统任意文件上传
No description provided by source...
一采通电子采购系统多处SQL注入漏洞#2
简要描述: 一采通电子采购系统多处SQL注入漏洞2 详细说明: google:inurl:companycglist.aspx?ComId= 1 漏洞存在于 /Products/CategoryMSelect.aspx,参数Name 例如 http://eps.umgg.com.cn/Products/CategoryMSelect.aspx?Name=树脂磨盘 2 漏洞存在于 /RAT/Product/HistoryPrice.aspx,参数kw 例如 http://eps.umgg.com.cn/RAT/Product/HistoryPrice.aspx?kw=1 3 漏洞存在于...