SQL Injection Vulnerability in Tongda OA Email Management Function
CVE-2024-1251

9.8CRITICAL

Key Information:

Vendor
Tongda
Status
OA 2017
Vendor
CVE Published:
6 February 2024

Badges

👾 Exploit Exists🟡 Public PoC

Summary

A significant security flaw has been identified in Tongda OA, specifically in the email management system's script located at /general/email/outbox/delete.php. This vulnerability arises from improper handling of user input in the DELETE_STR argument, which can be exploited to execute arbitrary SQL commands. This SQL injection risk allows attackers to manipulate the database in unauthorized ways, potentially compromising sensitive data and application integrity. The vulnerability has been made public, and its exploit details are accessible, highlighting the urgent need for organizations using affected versions to implement security measures or patches as soon as possible.

Affected Version(s)

OA 2017 11.0

OA 2017 11.1

OA 2017 11.2

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2024-1251 - Proof of Concept

References

https://vuldb.com/?id.252990
vdb-entrytechnical-description
https://vuldb.com/?ctiid.252990
signaturepermissions-required
https://github.com/rockersiyuan/CVE/blob/main/TongDa%20Sq...
exploit

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • 🟡

    Public PoC available

  • 👾

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

Credit

rocker (VulDB User)
.
CVE-2024-1251 : SQL Injection Vulnerability in Tongda OA Email Management Function | SecurityVulnerability.io