|
|||
Rule General Information |
---|
Release Date: | 2021-05-10 | |
Rule Name: | Weaver OA E-mobile SQL Injection Vulnerability | |
Severity: | ||
CVE ID: | ||
Rule Protection Details |
---|
Description: | Weaver provides mobile office, WeChat office, collaborative office (OA), process management, information portal, knowledge management, cost control management and other functions. It is suitable for mobile phones and PC terminals and is one of the more mainstream OA systems today. Weaver OA E-mobile has SQL Injection Vulnerability | |
Impact: | An attacker can inject arbitrary sql commands to view or change the database of the target by exploiting the vulnerability successfully. | |
Affected OS: | Windows, Linux, Others | |
Reference: | ||
Solutions |
---|
There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product. |