Office Anywhere 2017@* Security Vulnerabilities and Issues — Office Anywhere 2017@* CVE List

Lucene search

Tongda2000Office Anywhere 2017*

3 matches found

CVE•added 2024/02/16 3:15 p.m.•66 views

CVE-2024-25320

Tongda OA v2017 and up to v11.9 was discovered to contain a SQL injection vulnerability via the $AFF_ID parameter at /affair/delete.php.

9.8CVSS8.1AI score0.00176EPSS

CVE•added 2024/02/06 4:15 p.m.•39 views

CVE-2024-1251

A vulnerability classified as critical has been found in Tongda OA 2017 up to 11.10. Affected is an unknown function of the file /general/email/outbox/delete.php. The manipulation of the argument DELETE_STR leads to sql injection. The exploit has been disclosed to the public and may be used. VDB-25...

9.8CVSS9.6AI score0.00052EPSS

CVE•added 2023/12/21 1:15 a.m.•37 views

CVE-2023-7021

A vulnerability was found in Tongda OA 2017 up to 11.9. It has been classified as critical. Affected is an unknown function of the file general/vehicle/checkup/delete_search.php. The manipulation of the argument VU_ID leads to sql injection. It is possible to launch the attack remotely. The exploit...

9.8CVSS8.2AI score0.00055EPSS