|
|
|||
| Rule General Information |
|---|
| Release Date: | 2024-09-24 | |
| Rule Name: | Aj-Report dynSentence SQL Injection Vulnerability | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Aj-Report is a Java based report generation tool that supports multiple data sources and rich report design features. AJ Report 1.4.1 and earlier versions have SQL injection vulnerabilities that attackers can exploit to obtain sensitive database information. | |
| Impact: | An attacker can inject arbitrary sql commands to view or change the database of the target by exploiting the vulnerability successfully. | |
| Affected OS: | Windows, Linux, Others | |
| Reference: | ||
| Solutions |
|---|
| Please contact the software vendor to update the software patch. |