AI Score
Confidence
Low
SSVC
Exploitation
poc
Automatable
no
Technical Impact
partial
SQL Injection vulnerability in Dzzoffice version 2.01, allows remote attackers to obtain sensitive information via the doobj and doevent parameters in the Network Disk backend module.
github.com/EternalGemini/dzz