CVE-2024-10731 | Tongda OA up to 11.10 check_seal.php ID sql injection

Posted by Angelo Barbosa | Nov 2, 2024 | CVE

A vulnerability, which was classified as critical, was found in Tongda OA up to 11.10. Affected is an unknown function of the file /pda/appcenter/check_seal.php. The manipulation of the argument ID leads to sql injection.

This vulnerability is traded as CVE-2024-10731. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-10731 | Tongda OA up to 11.10 check_seal.php ID sql injection

Related Posts

CVE-2024-27348 | Apache HugeGraph-Server up to 1.2.x RESTful-API Privilege Escalation

CVE-2023-38300 | Orbic Maui RC545L/ORB545L information disclosure

CVE-2023-48116 | SmarterTools SmarterMail prior 16.x Build 8747 Calendar Appointment cross site scripting

CVE-2021-46920 | Linux Kernel up to 5.10.31/5.11/5.11.15 idxd information disclosure (a5ad12d5d69c/02981a44a0e4/ea941ac294d7)