CVE-2023-5023

A vulnerability was found in Tongda OA 2017 and classified as critical. Affected by this issue is some unknown functionality of the file general/hr/manage/staffrelatives/delete.php. The manipulation of the argument RELATIVESID leads to sql injection. The exploit has been disclosed to the public a...

TONGDA Office Anywhere SQL Injection Vulnerability

TONGDA Office Anywhere is a collaborative office OA system. A SQL injection vulnerability exists in TONGDA Office Anywhere version 2017, which stems from a SQL injection vulnerability in the parameter RELATIVESID...

PT-2023-31502 · Tongda Oa · Tongda Oa

Name of the Vulnerable Software and Affected Versions: Tongda OA version 2017 Description: A critical issue was found in Tongda OA, affecting some unknown functionality of the file general/hr/manage/staff relatives/delete.php. The manipulation of the RELATIVES ID argument leads to SQL injection...

Friday Squid Blogging: Extinct Relatives of Squid

Interesting fossils. Note that a poster is available. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. Read my blog posting guidelines here...

carloseliseo.org XSS vulnerability

Open Bug Bounty ID: OBB-569273 Description| Value ---|--- Affected Website:| carloseliseo.org Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

tillmangenealogy.org XSS vulnerability

Vulnerable URL: http://tillmangenealogy.org/browsemedia.php?mediasearch=bug=headstones=Relatives=%22%20autofocus%20onfocus=alert%60OPENBUGBOUNTY%60%20 Details: Description| Value ---|--- Patched:| No Latest check for patch:| 17.01.2018 Vulnerability type:| XSS Vulnerability status:| Publicly...