CVE-2021-22852
HGiga EIP product contains SQL Injection vulnerability. Attackers can inject SQL commands into specific URL parameter (online registration) to obtain database schema and data.
SQL Injection
SQL Injection
Vendor | Product | Version |
---|---|---|
hgiga | oaklouds_openid | 2.0 ≤ 𝑥 < 2.0-54 |
hgiga | oaklouds_openid | 3.0 ≤ 𝑥 < 3.0-54 |