cqliuke

1 exploit Active since Feb 2024
CVE-2024-25320 WRITEUP CRITICAL WRITEUP
Tongda OA 2017-11.9 - SQL Injection via $AFF_ID Parameter
Tongda OA v2017 and up to v11.9 was discovered to contain a SQL injection vulnerability via the $AFF_ID parameter at /affair/delete.php.
CVSS 9.8