Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An error-based SQL injection vulnerability exists in the Sunbird Power IQ 9.2.0 API. The vulnerability is due to an outdated API endpoint that applied arrays without proper input validation. This can allow attackers to manipulate SQL queries. This has been addressed in Power IQ version 9.2.1, where the API call code was updated to ensure safe handling of input values.
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:N/A:N
Vulnerability Type
N/A
Vulnerability Title
Sunbird Power IQ 安全漏洞
Vulnerability Description
Sunbird Power IQ是美国Sunbird公司的一个数据中心基础设施管理软件。 Sunbird Power IQ 9.2.0版本存在安全漏洞,该漏洞源于过时的API端点未正确验证输入,可能导致SQL查询被操纵。
CVSS Information
N/A
Vulnerability Type
N/A