CNNVD-202508-840 Information
CNNVD ID
CNNVD-202508-840
Related CVE
- CNNVD Published: 2025-08-09
Description (Chinese)
Dinstar Monitoring Platform是中国鼎信通达(Dinstar)公司的一个集成管理平台。 Dinstar Monitoring Platform 1.0版本存在SQL注入漏洞,该漏洞源于文件/itc/$%7BappPath%7D/login_getPasswordErrorNum.action中参数userBean.loginName处理不当,可能导致SQL注入攻击。
Description (English)
Dinstar Monitoring Platform is an integrated management platform for Dinstar in China. Dinstar Monitoring Platform 1.0 has an injection loophole in SQL, which arises from document /itc/$%7BappPath%7D/login getPasswordErrorNum.action’s parameter userBean.loginName was mishandled and could lead to an SQL injection attack.
Hazard Level
Low
Vulnerability Type
SQL注入
Affected Vendor
鼎信通达
Published
2025-08-09
Last Modified
2026-02-24
References
https://vuldb.com/?submit.625361 https://vuldb.com/?id.319296 https://github.com/qiantx/cve/blob/main/cve6.md https://vuldb.com/?ctiid.319296 https://access.redhat.com/security/cve/cve-2025-8773
Share on: