Skip to main content

Tiandy Easy7 EUVD-2026-31695

| CVE-2026-9465 MEDIUM
SQL Injection (CWE-89)
2026-05-25 VulDB GHSA-3g5p-qv44-mwhx
SQLi Easy7 Integrated Management Platform
5.5
CVSS 4.0 · NVD
Share

Severity by source

NVD PRIMARY
5.5 MEDIUM
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
X

Lifecycle Timeline

3
Analysis Generated
Jun 08, 2026 - 12:08 vuln.today
Severity Changed
May 26, 2026 - 20:07 NVD
HIGH MEDIUM
CVSS changed
May 26, 2026 - 20:07 NVD
7.3 (HIGH) 5.5 (MEDIUM)

DescriptionCVE.org

A vulnerability was found in Tiandy Easy7 Integrated Management Platform 7.17.0. This vulnerability affects unknown code of the file /Easy7/apps/WebService/GetDBDataEx.jsp. Performing a manipulation of the argument strTBName results in sql injection. Remote exploitation of the attack is possible. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.

AnalysisAI

Unauthenticated SQL injection in Tiandy Easy7 Integrated Management Platform 7.17.0 exposes database contents to remote attackers via the strTBName parameter of the GetDBDataEx.jsp web service endpoint. The CVSS 4.0 vector (AV:N/AC:L/AT:N/PR:N/UI:N) confirms no authentication or user interaction is required, and exploit code has been made publicly available, raising the operational risk despite a relatively low EPSS score of 0.03%. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts
Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Identify network-accessible Easy7 instance
Delivery
Send HTTP request to /Easy7/apps/WebService/GetDBDataEx.jsp
Exploit
Inject SQL payload via strTBName parameter
Execution
Database executes attacker-controlled query
Impact
Extract or modify database contents
Sign in to reveal

Vulnerability AssessmentAI

Exploitation No authentication is required (CVSS 4.0 PR:N) and no user interaction is needed (UI:N). … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 4.0 score of 5.5 reflects a medium-severity finding with partial confidentiality, integrity, and availability impact limited to the vulnerable system (VC:L/VI:L/VA:L) and no downstream or subsequent system impact (SC:N/SI:N/SA:N). … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An unauthenticated remote attacker sends a crafted HTTP GET or POST request to the publicly accessible /Easy7/apps/WebService/GetDBDataEx.jsp endpoint with a SQL payload embedded in the strTBName parameter - for example, injecting a UNION SELECT statement or Boolean-based blind payload. Because no authentication or special session state is required, the attack is fully automatable and can enumerate database tables, extract credentials, or modify records depending on the database user's permissions. …
Remediation No vendor-released patch has been identified at time of analysis; the vendor did not respond to pre-disclosure contact, so no official fix or advisory exists. … Detailed patch versions, workarounds, and compensating controls in full report.
Sign in to read full assessment

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

EUVD-2026-31695 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy