Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Odine Solutions GateKeeper 1.0 - 'trafficCycle' SQL Injection
Vulnerability Description
Odine Solutions GateKeeper 1.0 contains a SQL injection vulnerability in the trafficCycle API endpoint that allows remote attackers to inject malicious database queries. Attackers can exploit the vulnerability by sending crafted payloads to the /rass/api/v1/trafficCycle/ endpoint to manipulate PostgreSQL database queries and potentially extract sensitive information.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
Vulnerability Type
SQL命令中使用的特殊元素转义处理不恰当(SQL注入)
Vulnerability Title
Odine GateKeeper SQL注入漏洞
Vulnerability Description
Odine GateKeeper是土耳其Odine公司的一个语音欺诈识别软件。 Odine GateKeeper 1.0版本存在SQL注入漏洞,该漏洞源于trafficCycle API端点存在SQL注入,可能泄露敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A