Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
SQL injection vulnerability in Member Management System 2.1 allows remote attackers to execute arbitrary SQL via the ID parameter to (1) resend.asp or (2) news_view.asp.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Expinion.net Member Management System ID参数SQL注入漏洞
Vulnerability Description
Expinion.net Member Management System是一款基于WEB的网站管理系统。 Expinion.net Member Management System对用户提交的ID参数缺少充分过滤,远程攻击者可以利用这个漏洞进行SQL注入攻击,可能获得数据库敏感信息。 Expinion.net MMS系统包含的'resend.asp'和'news_view.asp'脚本对'ID'参数缺少过滤,提交包含恶意SQL命令作为'ID'参数数据,可能更改原有数据库逻辑,获得敏感信息或更改数据库内容
CVSS Information
N/A
Vulnerability Type
N/A