|
|
|||
| Rule General Information |
|---|
| Release Date: | 2024-06-11 | |
| Rule Name: | Kexun Library Comprehensive Management Cloud Platform SQL Injection Vulnerability | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | The Kexun Library Comprehensive Management Cloud Platform is a cloud-based system that integrates book management, reader services, data analysis, and other functions, designed to provide libraries with efficient and intelligent management and service solutions. There is an SQL injection vulnerability in the Kexun Library Comprehensive Management Cloud Platform, which can lead to unauthorized data access, data leakage, and even system destruction. | |
| Impact: | An attacker can inject arbitrary sql commands to view or change the database of the target by exploiting the vulnerability successfully. | |
| Affected OS: | Windows, Linux, Others | |
| Reference: | ||
| Solutions |
|---|
| Please contact the software vendor to update the software patch. |