Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple SQL injection vulnerabilities in Leadhound Full and LITE 2.1, and probably the Network Version "Full Version", allow remote attackers to execute arbitrary SQL commands via the (1) banner parameter in agent_links.pl; the offset parameter in (2) agent_links.pl, (3) agent_transactions.pl, (4) agent_subaffiliates.pl, and (5) agent_summary.pl; the camp_id parameter in (6) agent_transactions_csv.pl, (7) agent_subaffiliates.pl, and (8) agent_camp_det.pl; the (9) login parameter in agent_commission_statement.pl; the logged parameter in (10) agent_commission_statement.pl and (11) agent_camp_det.pl; the (12) agent_id parameter in agent_commission_statement.pl; and the (13) sub parameter in unspecified files.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Leadhound 多个SQL注入漏洞
Vulnerability Description
Leadhound 完整版和精简版2.1以及可能存在漏洞的网络版本中的"完整版"中存在多个SQL注入漏洞。这使得远程攻击者可以借助于 (1)agent_links.pl中的 banner参数,(2) agent_links.pl、(3) agent_transactions.pl、(4) agent_subaffiliates.pl和(5) agent_summary.pl中的offset参数, (6) agent_transactions_csv.pl、(7) agent_subaffiliates.p
CVSS Information
N/A
Vulnerability Type
N/A