Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
SQL injection vulnerability in index.php in OpenDocMan 1.2.5 allows remote attackers to execute arbitrary SQL commands via the frmpass (aka Password) parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
OpenDocMan SQL注入漏洞
Vulnerability Description
OpenDocMan是一个免费的符合ISO 17025和世界动物卫生组织文件管理标准的文件管理系统。 OpenDocMan存在SQL注入漏洞。由于index.php中的SQL查询语句没有对用户输入的"frmuser"和"frmpass"参数值进行适当地审查,攻击者可以利用该漏洞进行SQL注入攻击。 该漏洞被证实存在于1.2.5版本中。其它版本可能也会受到影响。
CVSS Information
N/A
Vulnerability Type
N/A