Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SQLi in Kolay Software's Talentics
Vulnerability Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Kolay Software Inc. Talentics allows Blind SQL Injection.This issue affects Talentics: through 20022026. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
SQL命令中使用的特殊元素转义处理不恰当(SQL注入)
Vulnerability Title
Kolay Talentics SQL注入漏洞
Vulnerability Description
Kolay Talentics是土耳其Kolay公司的一个候选人追踪系统与招聘管理平台。 Kolay Talentics 20022026及之前版本存在SQL注入漏洞,该漏洞源于SQL命令中特殊元素中和不当,可能导致盲SQL注入攻击。
CVSS Information
N/A
Vulnerability Type
N/A