A security flaw has been discovered in Tipray ๅฆ้จๅคฉ้็งๆ่กไปฝๆ้ๅ ฌๅธ Data Leakage Prevention System ๅคฉ้ๆฐๆฎๆณ้ฒ้ฒๆค็ณป็ป 1.0. Impacted is the function doFilter of the file findDeptPage.do. Performing manipulation of the argument sort results in sql injection. It is possible to initiate the attack remotely. The exploit has been released to the public and may be exploited. The vendor was contacted early about this disclosure but did not respond in any way.
Get an AI-powered plain-language explanation of this vulnerability and remediation steps.
Login to generate AI explanationCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
7 reference(s) from NVD