Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
TripSpark VEO Transportation-2.2.x-XP_BB-20201123-184084 NovusEDU-2.2.x-XP_BB-20201123-184084 allows unsafe data inputs in POST body parameters from end users without sanitizing using server-side logic. It was possible to inject custom SQL commands into the "Student Busing Information" search queries.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
TripSpark VEO SQL注入漏洞
Vulnerability Description
TripSpark VEO是TripSpark公司的一款专为交通和运输领域设计的软件解决方案,用于管理和优化车辆、设备和人员的运营。 TripSpark VEO Transportation NovusEDU-2.2.x-XP_BB-20201123-184084版本存在安全漏洞,该漏洞源于允许用户在POST参数中输入不安全的数据,进行自定义SQL注入。
CVSS Information
N/A
Vulnerability Type
N/A