Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple SQL injection vulnerabilities in Carbon Communities 2.4 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) ID parameter to events.asp, the (2) UserName parameter to getpassword.asp, and possibly an unspecified parameter to (3) option_Update.asp in an edit action.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Carbon Communities 多个SQL 注入漏洞
Vulnerability Description
Carbon Communities 2.4及其早期版本中的多个SQL注入漏洞会允许远程攻击者通过(1)ID参数到达vents.asp,(2)用户名参数到达getpassword.asp,及可能的一个未明参数到达(3)一个编辑操作中的option_Update.asp,以执行任一SQL命令。
CVSS Information
N/A
Vulnerability Type
N/A