Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
SAP Business One allows an attacker with business privileges to execute crafted database queries, exposing the back-end database. Due to framework restrictions, only some information can be obtained.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SAP Business One SQL注入漏洞
Vulnerability Description
SAP Business One是德国思爱普(SAP)公司的一套企业管理软件。该软件包括财务管理、运营管理和人力资源管理等功能。 SAP Business One 存在SQL注入漏洞,该漏洞源于对于SQL语句缺乏有效的验证与转义。SAP Business One允许具有业务特权的攻击者可利用该漏洞执行精心制作的数据库查询,从而暴露后端数据库。由于框架的限制,只能获得部分信息。
CVSS Information
N/A
Vulnerability Type
N/A