3 matches found
PT-2024-16433 · Tongda Oa · Tongda Oa
Name of the Vulnerable Software and Affected Versions: Tongda OA versions 2017 up to 11.9 Description: A critical issue has been identified, affecting unknown code in the file /pda/reportshop/new.php. The manipulation of the repid argument leads to SQL injection. This issue can be exploited...
TONGDA Office Anywhere SQL注入漏洞
TONGDA Office Anywhere is a collaborative office OA system. A SQL injection vulnerability exists in TONGDA Office Anywhere 2017 11.9 and earlier versions, which originates from a SQL injection in the parameter dataSrc...
CVE-2024-25320
Tongda OA v2017 and up to v11.9 was discovered to contain a SQL injection vulnerability via the $AFFID parameter at /affair/delete.php...