Unrated severityNVD Advisory· Published Dec 29, 2021· Updated Sep 16, 2024
Changing Information Technology Inc. MOTP(Mobile One Time Password) - SQL Injection
CVE-2021-44161
Description
Changing MOTP (Mobile One Time Password) system’s specific function parameter has insufficient validation for user input. A attacker in local area network can perform SQL injection attack to read, modify or delete backend database without authentication.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Changing/MOTP(Mobile One Time Password)v5Range: next of 3.5
Patches
Vulnerability mechanics
References
1- www.twcert.org.tw/tw/cp-132-5423-84a13-1.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.