Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Planet eStream before 6.72.10.07 allows a remote attacker (who is a publisher or admin) to obtain access to all records stored in the database, and achieve the ability to execute arbitrary SQL commands, via Search (the StatisticsResults.aspx flt parameter).
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Planet Enterprises Planet eStream SQL注入漏洞
Vulnerability Description
Planet Enterprises Planet eStream是Planet Enterprises公司的一个非常简单和安全的工具。可以让各级教育的学生和教职员工更容易获得视频。 Planet Enterprises Planet eStream 6.72.10.07之前版本存在SQL注入漏洞,该漏洞源于输入验证不足,应用程序允许直接注入SQL 命令,攻击者利用该漏洞可以获得到存储在数据库中的所有记录的访问权限,并可以执行任意SQL命令。
CVSS Information
N/A
Vulnerability Type
N/A