CAYIN Technology xPost 2.0
Approved changes feed: RSS · Atom
cpe:2.3:a:cayintech:xpost:2.0:*:*:*:*:*:*:*
part: a version: 2.0 update: *
| Vendor | Cayintech (232efcf8-cdcd-5406-a538-39f2d04128ce) |
|---|---|
| Product | Xpost (c0fcca9c-8447-5db8-a576-dcc1c4ae6ba4) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2020-7356 |
vulnerable | 2026-06-03 14:43:06.142998 |
Cayin xPost SQL Injection
CRITICAL (10)
CAYIN xPost suffers from an unauthenticated SQL Injection vulnerability. Input passed via the GET parameter 'wayfinder_seqid' in wayfinder_meeting_input.jsp is not properly sanitized before being returned to the user or used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code and execute SYSTEM commands.
Published: 2020-08-06T15:45:28.016Z
Updated: 2024-09-17T03:37:28.730Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.