luoye197-prog/cve-yinda-sql
GitHub
Releases0
本仓库仅用于授权的 CVE / CNA 官方人员进行漏洞验证与评估。 未经授权,禁止访问、使用或传播其中的任何内容。
CVE History
| CVE | Published | CVSS v3 | CVSS v2 |
|---|---|---|---|
| 7.3 HIGH | 7.5 HIGH | ||
A security flaw has been discovered in Fujian Smart Integrated Management Platform System up to 7.5. This issue affects some unknown processing of the file /Module/CRXT/Controller/XAccessPermissionPlus.ashx. The manipulation of the argument DeviceIDS results in sql injection. The attack may be launched remotely. The exploit has been released to the public and may be used for attacks. | |||