Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this vulnerability at ‘name_filter’ parameter with the administrative account or through cross-site request forgery.
CVSS Information
N/A
Vulnerability Type
SQL命令中使用的特殊元素转义处理不恰当(SQL注入)
Vulnerability Title
Advantech R-SeeNet SQL注入漏洞
Vulnerability Description
Advantech R-SeeNet是中国台湾研华(Advantech)公司的一个工业监控软件。该软件基于 snmp 协议进行监控平台,并且适用于 Linux、Windows 平台。 Advantech R-SeeNet 2.4.15存在SQL注入漏洞,该漏洞源于研华R-SeeNet 2.4.15(30.07.2021)的用户列表页面存在多个可利用的SQL注入漏洞。一个特别设计的HTTP请求可能导致SQL注入。攻击者可利用该漏洞可以使用管理帐户发出经过身份验证的HTTP请求,或通过跨站点请求伪造来触发这些
CVSS Information
N/A
Vulnerability Type
N/A