BillQuick Web Suite 漏洞列表
共找到 3 个与 BillQuick Web Suite 相关的漏洞
📅 加载漏洞趋势中...
-
CVE-2021-42258: BillQuick Web Suite SQL Injection POC
BQE BillQuick Web Suite 2018 through 2021 before 22.0.9.1 allows SQL injection for unauthenticated remote code execution. Successful exploitation can include the ability to execute arbitrary code as MSSQLSERVER$ via xp_cmdshell. -
CVE-2021-42258: BillQuick Web Suite SQL Injection POC
BQE BillQuick Web Suite 2018 through 2021 before 22.0.9.1 allows SQL injection for unauthenticated remote code execution. Successful exploitation can include the ability to execute arbitrary code as MSSQLSERVER$ via xp_cmdshell. -
BQE BillQuick Web Suite txtID / SQL 注入漏洞(CVE-2021-42258) 无POC
BQE BillQuick Web Suite在帮助专业服务公司更有效地管理项目、资源和财务方面,具有许多功能,旨在提高生产力并提供全面的业务洞察。攻击者除了可以利用 SQL 注入漏洞获取数据库中的信息(例如,管理员后台密码、站点的用户个人信息)之外,甚至在高权限的情况可向服务器中写入木马,进一步获取服务器系统权限。