Tongda2000 v11.10 was discovered to contain a SQL injection vulnerability in delete_query.php via the DELETE_STR parameter.
References
Link | Resource |
---|---|
https://exchange.xforce.ibmcloud.com/vulnerabilities/220421 | Third Party Advisory |
https://github.com/dota-st/Vulnerability/blob/master/tongdaOA/V11.10_sql_2.md | Broken Link Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-02-23T21:11:19
Updated: 2022-02-23T21:11:19
Reserved: 2022-02-21T00:00:00
Link: CVE-2022-25406
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-02-24T15:15:31.823
Modified: 2022-03-03T20:41:25.633
Link: CVE-2022-25406
JSON object: View
Redhat Information
No data.
CWE