Tongda2000 v11.10 was discovered to contain a SQL injection vulnerability in change_box.php via the DELETE_STR parameter.
References
Link | Resource |
---|---|
https://exchange.xforce.ibmcloud.com/vulnerabilities/220422 | Third Party Advisory |
https://github.com/dota-st/Vulnerability/blob/master/tongdaOA/V11.10_sql_1.md | Broken Link Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-02-23T21:11:27
Updated: 2022-02-23T21:11:27
Reserved: 2022-02-21T00:00:00
Link: CVE-2022-25405
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-02-24T15:15:31.783
Modified: 2022-03-03T18:44:17.553
Link: CVE-2022-25405
JSON object: View
Redhat Information
No data.
CWE