Tongda Office Anywhere@* Security Vulnerabilities and Issues — Tongda Office Anywhere@* CVE List

Lucene search

Tongda2000Tongda Office Anywhere*

20 matches found

CVE•added 2023/11/24 4:15 p.m.•61 views

CVE-2023-6276

A vulnerability classified as critical has been found in Tongda OA 2017 up to 11.9. This affects an unknown part of the file general/wiki/cp/ct/delete.php. The manipulation of the argument PROJ_ID_STR leads to sql injection. It is possible to initiate the attack remotely. The exploit has been discl...

7.5CVSS7.2AI score0.00046EPSS

CVE•added 2023/09/29 8:15 p.m.•56 views

CVE-2023-5285

A vulnerability classified as critical was found in Tongda OA 2017. Affected by this vulnerability is an unknown functionality of the file general/hr/recruit/recruitment/delete.php. The manipulation of the argument RECRUITMENT_ID leads to sql injection. The attack can be launched remotely. The expl...

7.5CVSS7.2AI score0.00035EPSS

CVE•added 2023/09/30 6:15 a.m.•50 views

CVE-2023-5298

A vulnerability was found in Tongda OA 2017. It has been rated as critical. Affected by this issue is some unknown functionality of the file general/hr/recruit/requirements/delete.php. The manipulation of the argument REQUIREMENTS_ID leads to sql injection. The exploit has been disclosed to the pub...

7.5CVSS6.5AI score0.00046EPSS

CVE•added 2023/10/26 1:15 p.m.•49 views

CVE-2023-5780

A vulnerability classified as critical was found in Tongda OA 2017 11.10. This vulnerability affects unknown code of the file general/system/approve_center/flow_guide/flow_type/set_print/delete.php. The manipulation of the argument DELETE_STR leads to sql injection. The attack can be initiated remo...

9.8CVSS8.8AI score0.00053EPSS

CVE•added 2023/09/29 3:15 p.m.•48 views

CVE-2023-5267

A vulnerability has been found in Tongda OA 2017 and classified as critical. This vulnerability affects unknown code of the file general/hr/recruit/hr_pool/delete.php. The manipulation of the argument EXPERT_ID leads to sql injection. The exploit has been disclosed to the public and may be used. Up...

9.8CVSS7.8AI score0.00032EPSS

CVE•added 2023/10/26 2:15 p.m.•47 views

CVE-2023-5782

A vulnerability, which was classified as critical, was found in Tongda OA 2017 up to 11.10. Affected is an unknown function of the file /manage/delete_query.php of the component General News. The manipulation of the argument NEWS_ID leads to sql injection. The exploit has been disclosed to the publ...

9.8CVSS7.8AI score0.00053EPSS

CVE•added 2023/10/20 9:15 p.m.•46 views

CVE-2023-5682

A vulnerability has been found in Tongda OA 2017 and classified as critical. This vulnerability affects unknown code of the file general/hr/training/record/delete.php. The manipulation of the argument RECORD_ID leads to sql injection. The exploit has been disclosed to the public and may be used. Up...

9.8CVSS6.8AI score0.00134EPSS

CVE•added 2023/09/29 12:15 p.m.•44 views

CVE-2023-5261

A vulnerability, which was classified as critical, was found in Tongda OA 2017. Affected is an unknown function of the file general/hr/manage/staff_title_evaluation/delete.php. The manipulation of the argument EVALUATION_ID leads to sql injection. The exploit has been disclosed to the public and ma...

9.8CVSS6.9AI score0.00059EPSS

CVE•added 2023/10/26 1:15 p.m.•44 views

CVE-2023-5781

A vulnerability, which was classified as critical, has been found in Tongda OA 2017 11.10. This issue affects the function DELETE_STR of the file general/system/res_manage/monitor/delete_webmail.php. The manipulation leads to sql injection. The attack may be initiated remotely. The exploit has been...

9.8CVSS8.2AI score0.00062EPSS

CVE•added 2023/09/29 3:15 p.m.•42 views

CVE-2023-5265

A vulnerability, which was classified as critical, has been found in Tongda OA 2017. Affected by this issue is some unknown functionality of the file general/hr/manage/staff_transfer/delete.php. The manipulation of the argument TRANSFER_ID leads to sql injection. The exploit has been disclosed to t...

9.8CVSS7.8AI score0.00043EPSS

CVE•added 2023/11/09 7:15 p.m.•41 views

CVE-2023-6054

A vulnerability, which was classified as critical, was found in Tongda OA 2017 up to 11.9. This affects an unknown part of the file general/wiki/cp/manage/lock.php. The manipulation of the argument TERM_ID_STR leads to sql injection. The exploit has been disclosed to the public and may be used. Upg...

9.8CVSS7.8AI score0.001EPSS

CVE•added 2023/10/26 2:15 p.m.•40 views

CVE-2023-5783

A vulnerability has been found in Tongda OA 2017 up to 11.9 and classified as critical. Affected by this vulnerability is an unknown functionality of the file general/system/approve_center/flow_sort/flow/delete.php. The manipulation of the argument id/sort_parent leads to sql injection. The attack ...

7.5CVSS7.1AI score0.00046EPSS

CVE•added 2023/11/09 7:15 p.m.•40 views

CVE-2023-6053

A vulnerability, which was classified as critical, has been found in Tongda OA 2017 up to 11.9. Affected by this issue is some unknown functionality of the file general/system/censor_words/manage/delete.php. The manipulation of the argument DELETE_STR leads to sql injection. The exploit has been di...

9.8CVSS8.1AI score0.0004EPSS

CVE•added 2023/11/12 11:15 a.m.•37 views

CVE-2023-6084

A vulnerability was found in Tongda OA 2017 up to 11.9 and classified as critical. Affected by this issue is some unknown functionality of the file general/vehicle/checkup/delete.php. The manipulation of the argument VU_ID leads to sql injection. The exploit has been disclosed to the public and may...

9.8CVSS8.1AI score0.00057EPSS

CVE•added 2023/09/17 10:15 p.m.•36 views

CVE-2023-5030

A vulnerability has been found in Tongda OA up to 11.10 and classified as critical. This vulnerability affects unknown code of the file general/hr/recruit/plan/delete.php. The manipulation of the argument PLAN_ID leads to sql injection. The exploit has been disclosed to the public and may be used. ...

8.8CVSS7.5AI score0.00032EPSS

CVE•added 2023/12/16 11:15 p.m.•35 views

CVE-2023-6885

A vulnerability was found in Tongda OA 2017 up to 11.10. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file general/vote/manage/delete.php. The manipulation of the argument DELETE_STR leads to sql injection. The exploit has been disclosed to the...

9.8CVSS7.8AI score0.00057EPSS

CVE•added 2023/11/09 1:15 p.m.•34 views

CVE-2023-6052

A vulnerability classified as critical has been found in Tongda OA 2017 up to 11.9. Affected is an unknown function of the file general/system/censor_words/module/delete.php. The manipulation of the argument DELETE_STR leads to sql injection. The exploit has been disclosed to the public and may be ...

9.8CVSS7.3AI score0.00099EPSS

CVE•added 2023/12/08 2:15 p.m.•29 views

CVE-2023-6607

A vulnerability has been found in Tongda OA 2017 up to 11.10 and classified as critical. Affected by this vulnerability is an unknown functionality of the file general/wiki/cp/manage/delete.php. The manipulation of the argument TERM_ID_STR leads to sql injection. The exploit has been disclosed to t...

7.5CVSS6.7AI score0.00048EPSS

CVE•added 2024/02/06 5:15 p.m.•29 views

CVE-2024-1252

A vulnerability classified as critical was found in Tongda OA 2017 up to 11.9. Affected by this vulnerability is an unknown functionality of the file /general/attendance/manage/ask_duty/delete.php. The manipulation of the argument ASK_DUTY_ID leads to sql injection. The exploit has been disclosed t...

9.8CVSS9.6AI score0.00103EPSS

CVE•added 2023/09/17 4:15 a.m.•26 views

CVE-2023-5019

A vulnerability classified as critical was found in Tongda OA. This vulnerability affects unknown code of the file general/hr/manage/staff_reinstatement/delete.php. The manipulation of the argument REINSTATEMENT_ID leads to sql injection. The attack can be initiated remotely. The exploit has been d...

9.8CVSS8.4AI score0.00026EPSS