3 matches found
Hisense TransTech Smart Bus Management System SQL Injection Vulnerability
Hisense TransTech Smart Bus Management System is an intelligent bus management system developed by China's Hisense company. The Hisense TransTech Smart Bus Management System versions 20260113 and earlier have a SQL injection vulnerability. This vulnerability stems from incorrect operations with t...
CVE-2026-1449 Hisense TransTech Smart Bus Management System TireMng.aspx Page_Load sql injection
A flaw has been found in Hisense TransTech Smart Bus Management System up to 20260113. Affected is the function PageLoad of the file YZSoft/Forms/XForm/BM/BusComManagement/TireMng.aspx. Executing a manipulation of the argument key can lead to sql injection. It is possible to launch the attack...
CVE-2026-1449
CVE-2026-1449 affects Hisense TransTech Smart Bus Management System up to 20260113. The vulnerability is in YZSoft/Forms/XForm/BM/BusComManagement/TireMng.aspx, Page_Load, where manipulation of the request argument key can trigger a SQL injection. Remote exploitation is possible, and an exploit h...