|
|
|||
| Rule General Information |
|---|
| Release Date: | 2022-08-02 | |
| Rule Name: | Tongda OA gateway.php Directory Traversal Vulnerability | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Tongda OA is a set of collaborative office automation software independently developed by Beijing Tongda Xinke Technology Co., LTD. The page of Tongda OA gateway.php has a directory traversal vulnerability. An unauthenticated attacker could exploit this vulnerability to access any file on the server, including database credentials, API keys, configuration files, etc., to gain system permissions and sensitive information. | |
| Impact: | An attacker can abtain sensitive information of the target victim, and do malicious actions to gain profits using the information. | |
| Affected OS: | Windows, Linux, Others | |
| Reference: | ||
| Solutions |
|---|
| Please contact the software vendor to update the software patch. |