|
|
|||
| Rule General Information |
|---|
| Release Date: | 2024-07-16 | |
| Rule Name: | Data86 Electronic Reservoir Monitoring Platform GetAllRechargeRecordsBySIMCardId SQL Injection Vulnerability | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Tangshan Data86 electronic reservoir monitoring platform through real-time monitoring, data analysis, early warning system and remote control and other functions, manage and monitor the reservoir to ensure the safe operation of the reservoir. Tangshan flat liters electronic reservoir regulation platform GetRecordsByTableNameAndColumns joints have SQL injection vulnerabilities, unauthorized attacker can pass the vulnerability to access and modify data in the database. | |
| Impact: | An attacker can inject arbitrary sql commands to view or change the database of the target by exploiting the vulnerability successfully. | |
| Affected OS: | Windows, Linux, Others | |
| Reference: | ||
| Solutions |
|---|
| Please contact the software vendor to update the software patch. |