Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
SQL injection in the ID parameter of the UploadedImageDisplay.aspx endpoint of SelectSurvey.NET before 5.052.000 allows a remote, unauthenticated attacker to retrieve data from the application's backend database via boolean-based blind and UNION injection.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ClassApps SelectSurvey.NET SQL注入漏洞
Vulnerability Description
ClassApps SelectSurvey.Net是美国ClassApps公司的一个使用微软尖端的 .Net 技术构建的调查软件。 ClassApps SelectSurvey.NET 5.052.000 之前的 UploadedImageDisplay.aspx 端点的 ID 参数中存在SQL注入漏洞,该漏洞允许远程、未经身份验证的攻击者通过基于布尔的盲注和 UNION 注入从应用程序的后端数据库中检索数据。
CVSS Information
N/A
Vulnerability Type
N/A