6 matches found
CVE-2022-23902
Tongda2000 v11.10 was discovered to contain a SQL injection vulnerability in exportdata.php via the dname parameter...
Tongda2000 SQL Injection Vulnerability
A SQL injection vulnerability exists in Tongda2000, a web-based intelligent office system from China Tongda, which originates from the dname parameter in the product's exportdata.php file that does not securely handle special characters in user input data. An attacker can execute malicious SQL...
CVE-2022-23902
Tongda2000 v11.10 was discovered to contain a SQL injection vulnerability in exportdata.php via the dname parameter...
Sql injection
Tongda2000 v11.10 was discovered to contain a SQL injection vulnerability in exportdata.php via the dname parameter...
CVE-2022-23902
CVE-2022-23902 affects Tongda2000 v11.10, with a SQL injection in export_data.php via the d_name parameter. Multiple connected sources (Red Hat, CNVD, NVD mirrors, PRION, CVE lists) corroborate that user-supplied values for d_name are not securely handled, enabling SQL statements to be executed. ...
CVE-2022-23902
Tongda2000 v11.10 was discovered to contain a SQL injection vulnerability in exportdata.php via the dname parameter...