ID
VAR-202007-1500
TITLE
Hangzhou Yishixing Information Technology Co., Ltd.'s Fanzhi Hotel Human Capital ES Management Platform Group Edition has a SQL injection vulnerability
Trust: 0.6
DESCRIPTION
Hangzhou Yishixing Information Technology Co., Ltd. is a high-tech enterprise entity specializing in system development, integration and services in the field of card management in the hotel industry personnel logistics and RFID Internet of Things applications. Hangzhou Yishixing Information Technology Co., Ltd. Fanzhi Hotel Human Capital ES Management Platform Group Edition has a SQL injection vulnerability, which can be used by attackers to obtain sensitive database information.
Trust: 0.6
IOT TAXONOMY
| category: | ['IoT'] | sub_category: | - | Trust: 0.6 |
AFFECTED PRODUCTS
| vendor: | yishixing information | model: | fanzhi hotel human capital es management platform group edition es300 | scope: | - | version: | - | Trust: 0.6 |
| vendor: | yishixing information | model: | fanzhi hotel human capital es management platform group edition es600 | scope: | - | version: | - | Trust: 0.6 |
| vendor: | yishixing information | model: | fanzhi hotel human capital es management platform group edition es2018 | scope: | - | version: | - | Trust: 0.6 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||
|
|
PATCH
| title: | SQL Injection Vulnerability in Fanzhi Hotel Human Capital ES Management Platform | url: | https://www.cnvd.org.cn/patchinfo/show/218085 | Trust: 0.6 |
EXTERNAL IDS
| db: | CNVD | id: | CNVD-2020-33154 | Trust: 0.6 |
SOURCES
| db: | CNVD | id: | CNVD-2020-33154 |
LAST UPDATE DATE
2022-05-04T09:09:00.768000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2020-33154 | date: | 2020-06-17T00:00:00 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2020-33154 | date: | 2020-07-03T00:00:00 |