CNNVD-202601-2630 Information
Jan 15, 2026
cve
CNNVD ID
CNNVD-202601-2630
Related CVE
- CNNVD Published: 2026-01-15
Description (Chinese)
Wolters Kluwer Kmaleon是德国Wolters Kluwer公司的一款案件管理自动化软件。 Wolters Kluwer Kmaleon 1.1.0.205版本存在SQL注入漏洞,该漏洞源于kmaleonW.php的tipocomb参数存在SQL注入,可能导致攻击者操纵数据库查询。
Description (English)
Walters Kluwer Kmaleon is an automated case management software of the German company Wolters Kluwer. Wolters Kluwer Kmaleon 1.1.0.205 has an injection loophole in SQL, which originates in the tipcomb parameter of kmaleonW.php, and may lead to a database query being manipulated by the attackers.
Hazard Level
Medium
Vulnerability Type
SQL注入
Affected Vendor
威科集团
Published
2026-01-15
Last Modified
2026-02-24
References
https://www.levelprograms.com/kmaleon-abogados/ https://web.archive.org/web/20210616143348/ https://www.exploit-db.com/exploits/50499
Share on: