Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SQL Injection vulnerability in SAP Business One B1i Layer
Vulnerability Description
B1i module of SAP Business One - version 10.0, application allows an authenticated user with deep knowledge to send crafted queries over the network to read or modify the SQL data. On successful exploitation, the attacker can cause high impact on confidentiality, integrity and availability of the application.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H
Vulnerability Type
SQL命令中使用的特殊元素转义处理不恰当(SQL注入)
Vulnerability Title
SAP Business One SQL注入漏洞
Vulnerability Description
SAP Business One是德国思爱普(SAP)公司的一套企业管理软件。该软件包括财务管理、运营管理和人力资源管理等功能。 SAP Business One B1i module 存在SQL注入漏洞,该漏洞源于通过网络发送精心设计的查询以读取或修改 SQL 数据。
CVSS Information
N/A
Vulnerability Type
N/A