| Description: | | The Heimdall data leak protection system adopts an open architecture and integrates with the existing IT infrastructure, which is an integrated single management platform system. There is SQL injection vulnerability in the pushSetup.do interface of the system. In addition to obtaining information in the database (such as administrator background password, site user personal information) by using the SQL injection vulnerability, the attacker can even write commands to the server under high permission to further obtain the server system permission. |