Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SQL injection vulnerability in Snow License Manager
Vulnerability Description
Blind SQL injection in a service running in Snow Software license manager from version 8.0.0 up to and including 9.30.1 on Windows allows a logged in user with high privileges to inject SQL commands via the web portal.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
SQL命令中使用的特殊元素转义处理不恰当(SQL注入)
Vulnerability Title
Snow Software license manager SQL注入漏洞
Vulnerability Description
Snow Software Snow License Manager(SLM)是瑞典Snow Software公司的Snow Software Asset Management 平台的中心枢纽。 Snow Software license manager 8.0.0 到 9.30.1版本存在安全漏洞,该漏洞源于允许具有高权限的用户通过 Web 门户注入 SQL 命令。
CVSS Information
N/A
Vulnerability Type
N/A