Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SQL injection in QPLANT by TAI Smart Factory
Vulnerability Description
SQL injection vulnerability in TAI Smart Factory's QPLANT SF version 1.0. Exploitation of this vulnerability could allow a remote attacker to retrieve all database information by sending a specially crafted SQL query to the ‘email’ parameter on the ‘RequestPasswordChange’ endpoint.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
SQL命令中使用的特殊元素转义处理不恰当(SQL注入)
Vulnerability Title
TAI Smart Factory QPLANT SF SQL注入漏洞
Vulnerability Description
TAI Smart Factory QPLANT SF是TAI Smart Factory公司的一种管理和控制生产执行的工具。 TAI Smart Factory QPLANT SF 1.0版本存在SQL注入漏洞,该漏洞源于允许远程攻击者通过向端点发送特别构造的SQL查询,来检索所有数据库信息。
CVSS Information
N/A
Vulnerability Type
N/A