CVE-2026-7727 | Shandong Hoteam Software PDM Product Data Management System up to 8.3.9 DataService GetQueryMachineGridOnePageData SortOrder sql injection

A vulnerability identified as critical has been detected in Shandong Hoteam Software PDM Product Data Management System up to 8.3.9. This affects the function GetQueryMachineGridOnePageData of the file /Base/BaseService.asmx/DataService. This manipulation of the argument SortOrder causes sql injection.

This vulnerability is handled as CVE-2026-7727. The attack can be initiated remotely. There is not any exploit available.

You should upgrade the affected component.VulDB Recent EntriesRead More