| Description: | | Esafenet Electronic Document Security Management System is an electronic document security protection software, the system uses the driver layer transparent encryption technology, through the encryption protection of electronic documents, to prevent internal employees from leaking and external personnel illegally stealing enterprise core important data assets. The id parameter of the SecureUsbService interface of Esafenet Electronic Document Security Management System is not precompiled and adequately verified for incoming data, resulting in SQL injection vulnerability of the interface. Malicious attackers may obtain server information or directly obtain server permissions through this vulnerability. |