5 matches found
CVE-2023-7023
A vulnerability was found in Tongda OA 2017 up to 11.9. It has been rated as critical. Affected by this issue is some unknown functionality of the file general/vehicle/query/delete.php. The manipulation of the argument VUID leads to sql injection. The attack may be launched remotely. The exploit...
Sql injection
A vulnerability was found in Tongda OA 2017 up to 11.9. It has been rated as critical. Affected by this issue is some unknown functionality of the file general/vehicle/query/delete.php. The manipulation of the argument VUID leads to sql injection. The attack may be launched remotely. The exploit...
CVE-2023-7023 Tongda OA 2017 delete.php sql injection
A vulnerability was found in Tongda OA 2017 up to 11.9. It has been rated as critical. Affected by this issue is some unknown functionality of the file general/vehicle/query/delete.php. The manipulation of the argument VUID leads to sql injection. The attack may be launched remotely. The exploit...
CVE-2023-7023
Tongda OA 2017 up to 11.9 contains a SQL injection in general/vehicle/query/delete.php via the VU_ID parameter. The issue can be exploited remotely, and the exploit has been publicly disclosed. Upgrading to version 11.10 addresses the vulnerability. Affected product/version: Tongda OA 2017 (≤11.9...
CVE-2023-7023 Tongda OA 2017 delete.php sql injection
A vulnerability was found in Tongda OA 2017 up to 11.9. It has been rated as critical. Affected by this issue is some unknown functionality of the file general/vehicle/query/delete.php. The manipulation of the argument VUID leads to sql injection. The attack may be launched remotely. The exploit...