Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
SQL Injection vulnerability in Dzzoffice version 2.01, allows remote attackers to obtain sensitive information via the doobj and doevent parameters in the Network Disk backend module.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
DzzOffice SQL注入漏洞
Vulnerability Description
DzzOffice是美国大桌子(DzzOffice)公司的一个可提供在线协同办公套件功能的平台。该平台可为用于提供在线文档、表格、网盘、演示等功能。 DzzOffice 2.01 版本存在SQL注入漏洞,该漏洞源于允许远程攻击者通过网络磁盘后端模块中的 doobj 和 doevent 参数获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A