Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Huaxia ERP User Management sql injection
Vulnerability Description
A vulnerability was found in Huaxia ERP 2.3 and classified as critical. Affected by this issue is some unknown functionality of the component User Management. The manipulation of the argument login leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-212792.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
对消息或数据结构的处理不恰当
Vulnerability Title
Huaxia ERP 安全漏洞
Vulnerability Description
Huaxia ERP是中国华夏(Huaxia)公司的一个 ERP 软件。 Huaxia ERP 存在安全漏洞,该漏洞源于 User Management 组件的未知方法,对 login 参数的操作可以导致 SQL 注入。
CVSS Information
N/A
Vulnerability Type
N/A