Primary

Context

e-Excellence U-Office Force SQL Injection Vulnerability

Vulnerability

Patched

A SQL injection vulnerability has been identified in e-Excellence's U-Office Force, affecting versions prior to 29.50. This vulnerability allows authenticated remote attackers to inject arbitrary SQL commands, which could be used to read, modify, or delete database contents.

Impact

Exploitation of this vulnerability could lead to unauthorized access to database contents, allowing for reading, modifying, or deleting data.

Remediation

Users are advised to update U-Office Force to version 29.50 or later.

Added: Nov 10, 2025, 3:20 AM

Updated: Nov 10, 2025, 3:20 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

3.3

remediation

7.7

relevance

0.9

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

3.3

remediation

7.7

relevance

0.9

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

e-Excellence U-Office Force SQL Injection Vulnerability

Vulnerability

Impact

Remediation

Affected Products

e-Excellence U-Office Force

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating