CVE-2023-4165

Tongda OA delete_seal.php sql injection

CVSS 5.5 MEDIUMEPSS 10.8%CWE-89

In short

A flaw in Tongda OA's delete_seal.php file allows attackers to inject malicious SQL commands through the DELETE_STR parameter, potentially letting them access or modify sensitive database information without proper authorization.

Technical detail

SQL injection vulnerability in delete_seal.php (general/system/seal_manage/iweboffice/) via unsanitized DELETE_STR parameter; allows unauthenticated or authenticated attackers to execute arbitrary SQL queries depending on application context; impacts confidentiality and integrity of the database. Fixed in version 11.10.

Summary generated and translated by AI from the official description.

A vulnerability, which was classified as critical, was found in Tongda OA. This affects an unknown part of the file general/system/seal_manage/iweboffice/delete_seal.php. The manipulation of the argument DELETE_STR leads to sql injection. The exploit has been disclosed to the public and may be used. Upgrading to version 11.10 is able to address this issue. It is recommended to upgrade the affected component. The identifier VDB-236181 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Affected products

Tongda · OA

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/nagenanhai/cve/blob/main/sql.md https://vuldb.com/?ctiid.236181 https://vuldb.com/?id.236181