Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Dynacase Webdesk freedomrss_search.php freedomrss_search sql injection
Vulnerability Description
A vulnerability was found in Dynacase Webdesk and classified as critical. Affected by this issue is the function freedomrss_search of the file freedomrss_search.php. The manipulation leads to sql injection. Upgrading to version 3.2-20180305 is able to address this issue. The patch is identified as 750a9b35af182950c952faf6ddfdcc50a2b25f8b. It is recommended to upgrade the affected component. VDB-233366 is the identifier assigned to this vulnerability.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
SQL命令中使用的特殊元素转义处理不恰当(SQL注入)
Vulnerability Title
Dynacase Webdesk SQL注入漏洞
Vulnerability Description
Dynacase Webdesk是Dynacase Platform 的操作界面。 Dynacase Webdesk 3.2-20180305之前版本存在SQL注入漏洞,该漏洞源于文件Freedomrss_search.php的函数Freedomrss_search会导致sql注入。
CVSS Information
N/A
Vulnerability Type
N/A