Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
seccome Ehoney set sql injection
Vulnerability Description
A vulnerability was found in seccome Ehoney and classified as critical. Affected by this issue is some unknown functionality of the file /api/v1/bait/set. The manipulation of the argument Payload leads to sql injection. The attack may be launched remotely. VDB-212414 is the identifier assigned to this vulnerability.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
对消息或数据结构的处理不恰当
Vulnerability Title
seccome Ehoney SQL注入漏洞
Vulnerability Description
seccome Ehoney是中国seccome开源的一个安全、快捷、高交互、企业级的蜜罐管理系统。 seccome Ehoney存在安全漏洞,该漏洞源于其文件/api/v1/bait/set中的未知函数对参数Payload的操作导致SQL注入。
CVSS Information
N/A
Vulnerability Type
N/A