CNNVD-202602-1665 Information

CNNVD ID

CNNVD-202602-1665

Related CVE

CVE-2026-2094

• CNNVD Published: 2026-02-10

Description (Chinese)

Flowring Docpedia是中国华苓（Flowring）公司的一个文件管理系统。 Flowring Docpedia存在SQL注入漏洞，该漏洞源于经过身份验证的远程攻击者可注入任意SQL命令，可能导致读取、修改和删除数据库内容。

Description (English)

Flowing Docpedia is a document management system for the Chinese company Flowring. Flowing Docpedia has an SQL injection loophole, which stems from the fact that an identified remote attacker can inject any SQL order, which may lead to the reading, modification and deletion of database content.

Hazard Level

Medium

Vulnerability Type

SQL注入

Affected Vendor

华苓

Published

2026-02-10

Last Modified

2026-02-24

References

https://www.twcert.org.tw/en/cp-139-10698-1ab75-2.html https://www.twcert.org.tw/tw/cp-132-10697-6a30b-1.html

Patch

https://www.flowring.com/agentflow/