CVE-2024-3720

A vulnerability has been found in Tianwell Fire Intelligent Command Platform 1.1.1.1 and classified as critical. This vulnerability affects unknown code of the file /mfsNotice/page of the component API Interface. The manipulation of the argument gsdwid leads to sql injection. The attack can be...

CVE-2024-3720 Tianwell Fire Intelligent Command Platform API Interface page sql injection

A vulnerability has been found in Tianwell Fire Intelligent Command Platform 1.1.1.1 and classified as critical. This vulnerability affects unknown code of the file /mfsNotice/page of the component API Interface. The manipulation of the argument gsdwid leads to sql injection. The attack can be...

CVE-2024-3720

The CVE-2024-3720 entry details a SQL injection in Tianwell Fire Intelligent Command Platform (version 1.1.1.1) affecting the API Interface component via the /mfsNotice/page path. The root cause is manipulation of the gsdwid parameter, enabling remote exploitation and data exposure/impact as desc...

CVE-2024-3720 Tianwell Fire Intelligent Command Platform API Interface page sql injection

A vulnerability has been found in Tianwell Fire Intelligent Command Platform 1.1.1.1 and classified as critical. This vulnerability affects unknown code of the file /mfsNotice/page of the component API Interface. The manipulation of the argument gsdwid leads to sql injection. The attack can be...