Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Tongda OA Annual Leave data.php improper authorization
Vulnerability Description
A vulnerability classified as critical was found in Tongda OA 11.2/11.3/11.4/11.5/11.6. This vulnerability affects unknown code of the file general/hr/setting/attendance/leave/data.php of the component Annual Leave Handler. The manipulation leads to improper authorization. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Vulnerability Type
授权机制不恰当
Vulnerability Title
TONGDA Office Anywhere 授权问题漏洞
Vulnerability Description
TONGDA Office Anywhere是一套协同办公OA系统。 TONGDA Office Anywhere 11.2至11.6版本存在授权问题漏洞,该漏洞源于不正确的授权。
CVSS Information
N/A
Vulnerability Type
N/A