CNNVD-202508-2815 Information

CNNVD ID

CNNVD-202508-2815

Related CVE

CVE-2025-9255

• CNNVD Published: 2025-08-22

Description (Chinese)

WebITR是中国台湾WebITR公司的一款差勤系统。 WebITR存在SQL注入漏洞，该漏洞源于容易受到SQL注入攻击，可能导致未经验证的远程攻击者执行任意SQL命令。

Description (English)

WebITR is a travel system of WebITr, Taiwan, China. WebITR has a loophole in SQL, which stems from its vulnerability to SQL injection attacks and could lead to uncertified long-range attackers carrying out arbitrary SQL orders.

Hazard Level

Medium

Vulnerability Type

SQL注入

Affected Vendor

WebITR

Published

2025-08-22

Last Modified

2026-02-24

References

https://www.twcert.org.tw/tw/cp-132-10328-dbc35-1.html https://www.twcert.org.tw/en/cp-139-10329-a1c5d-2.html https://nvd.nist.gov/vuln/detail/CVE-2025-9255