| Description: | | Weaver E-cology is an enterprise-level collaborative office platform, which supports information sharing, communication, collaboration and knowledge management by integrating various office applications and workflow, to improve work efficiency and organizational management ability. The WorkPlanService interface of Weaver E-cology has a SQL injection vulnerability, through which attackers can inject malicious SQL statements, which may cause remote code execution. Impact version: E-cology8 is less than v10.65, E-cology9 is less than v10.65. |