| Description: | | China Telecom is one of the largest state-owned telecommunications companies in China, providing a comprehensive range of fixed line and mobile communications services, Internet access services, data communications services, multimedia communications services and other related services worldwide. SQL injection vulnerability exists in manager/login.php on the front landing page of China Telecom Gateway Configuration Management system. This vulnerability is caused by insufficient verification of input parameters, and an attacker can inject malicious SQL statements into the application to perform unauthorized operations. |