Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
There is a SQL injection vulnerability in ArcGIS Server
Vulnerability Description
A SQL injection vulnerability exists in some configurations of ArcGIS Server versions 10.8.1 and earlier. Specially crafted web requests can expose information that is not intended to be disclosed (not customer datasets). Web Services that use file based data sources (file Geodatabase or Shape Files or tile cached services) are unaffected by this issue.
CVSS Information
N/A
Vulnerability Type
SQL命令中使用的特殊元素转义处理不恰当(SQL注入)
Vulnerability Title
Esri Arcgis Server SQL注入漏洞
Vulnerability Description
Esri Arcgis Server是美国Esri公司的一个面向Web的可用于提供地理位置服务的企业级软件平台。 ArcGIS Server 10.8.1及之前版本存在SQL注入漏洞,攻击者可以利用该漏洞获取用户敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A