CVE-2023-6054

Tongda OA 2017 lock.php sql injection

CVSS 5.5 MEDIUMEPSS 0.9%CWE-89

In short

Tongda OA 2017 contains a SQL injection vulnerability in its lock.php file that allows attackers to manipulate database queries through the TERM_ID_STR parameter. This could let unauthorized users access, modify, or delete sensitive data from the application's database.

Technical detail

A SQL injection vulnerability exists in Tongda OA 2017 (up to version 11.9) in the general/wiki/cp/manage/lock.php file, where the TERM_ID_STR parameter is not properly sanitized before being used in SQL queries. An attacker with access to the affected parameter can inject malicious SQL code to execute arbitrary database operations. Upgrading to version 11.10 or later resolves this issue.

Summary generated and translated by AI from the official description.

A vulnerability, which was classified as critical, was found in Tongda OA 2017 up to 11.9. This affects an unknown part of the file general/wiki/cp/manage/lock.php. The manipulation of the argument TERM_ID_STR leads to sql injection. The exploit has been disclosed to the public and may be used. Upgrading to version 11.10 is able to address this issue. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-244875. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Affected products

Tongda · OA 2017

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/TinkAnet/cve/blob/main/sql2.md https://vuldb.com/?ctiid.244875 https://vuldb.com/?id.244875