CVE-2024-10600 – “Tongda OA SQL Injection Vulnerability”

11月 1, 2024
12:16 am

CVE ID : CVE-2024-10600

Published : Oct. 31, 2024, 11:15 p.m. | 1 hour, 1 minute ago

Description : A vulnerability, which was classified as critical, was found in Tongda OA 2017 up to 11.6. Affected is an unknown function of the file pda/appcenter/submenu.php. The manipulation of the argument appid leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-10600 – “Tongda OA SQL Injection Vulnerability”

Elvescore.io

Recent Posts

CVE-2024-48197 – Audiocodes MP-202b Cross Site Scripting Privilege Escalation

CVE-2024-56199 – phpMyFAQ HTML Injection Vulnerability

CVE-2025-0173 – SourceCodester Online Eyewear Shop SQL Injection Vulnerability

CVE-2024-11716 – CTFd Team Bracket Reassignment Vulnerability ( Privilege Escalation )

CVE-2024-11717 – CTFd TokenForgeable Authentication

CVE-2022-45811 – WeyHan Ng Post Teaser Missing Authorization

CVE-2024-10600 – “Tongda OA SQL Injection Vulnerability”

CVE-2024-10600 – “Tongda OA SQL Injection Vulnerability”