brucenan
commented
8 years ago Thanks for your info. Any details about the SQL Injection? There're no details in the wooyun page.
Closed lxj616 closed 8 years ago
brucenan
commented
8 years ago Thanks for your info. Any details about the SQL Injection? There're no details in the wooyun page.
lxj616
commented
8 years ago Please register and claim the bug report as Vendor , this report is only available for official vendor & CNVD (if not claimed by vendor) at present
brucenan
commented
8 years ago I've registered as the Vendor (verified) , but how to claim this bug?
lxj616
commented
8 years ago It seems to be claimed & available for you now , but there could be some delay I suppose
brucenan
commented
8 years ago Thank you very much. I've got the detailed info. We will fix this problem as soon as possible.
lxj616
commented
8 years ago Fix within develop branch confirmed effective against WooYun-2016-172480
A SQL Injection vulnerability has been found & reported to wooyun.org , since security bugs should not be disclosed before applying patch , please claim the bug report from wooyun.org for details and fix
http://wooyun.org/bugs/wooyun-2010-0172480