CVE-2026-7727 - Vulnerability Details

- Shandong Hoteam Software PDM Product Data Management System DataService GetQueryMachineGridOnePageData sql injection

Description

A vulnerability was determined in Shandong Hoteam Software PDM Product Data Management System up to 8.3.9. This affects the function GetQueryMachineGridOnePageData of the file /Base/BaseService.asmx/DataService. This manipulation of the argument SortOrder causes sql injection. The attack can be initiated remotely. Upgrading to version 8.3.10 is able to mitigate this issue. You should upgrade the affected component.

Published: 2026-05-04

Score: 6.9 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

A flaw in the GetQueryMachineGridOnePageData function of Shandong Hoteam Software’s PDM Product Data Management System lets attackers manipulate the SortOrder argument without proper sanitization, causing the back-end database to execute arbitrary SQL statements. This can enable attackers to read, modify or delete sensitive data that the application normally protects, and in some configurations could lead to higher level control over the system.

Affected Systems

Systems running Shandong Hoteam Software PDM Product Data Management System versions up to and including 8.3.9 are vulnerable. The issue resides in the /Base/BaseService.asmx/DataService endpoint and affects any deployment that exposes this service to remote clients.

Risk and Exploitability

The CVSS score of 6.9 reflects a moderate‑to‑high severity, while the lack of an EPSS ranking or KEV listing suggests exploitation has not yet been widely reported but remains possible. Because the vulnerability can be triggered remotely by crafting a specific API call, an attacker only needs network reach to the exposed service to leverage it. The attack could compromise confidentiality and integrity of the organization’s data assets.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Shandong Hoteam Software

PDM Product Data Management System

affected

Version	Status	Constraints
`8.3.0`	affected	—
`8.3.1`	affected	—
`8.3.2`	affected	—
`8.3.3`	affected	—
`8.3.4`	affected	—
`8.3.5`	affected	—
`8.3.6`	affected	—
`8.3.7`	affected	—
`8.3.8`	affected	—
`8.3.9`	affected	—
`8.3.10`	unaffected	—

No data.

Vendor Product Confidence Versions

Shandong Hoteam Software

Pdm Product Data Management System

100%

Version	Status	Scheme	Platform
`8.3.0`	affected	semver	—
`8.3.1`	affected	semver	—
`8.3.2`	affected	semver	—
`8.3.3`	affected	semver	—
`8.3.4`	affected	semver	—
`8.3.5`	affected	semver	—
`8.3.6`	affected	semver	—
`8.3.7`	affected	semver	—
`8.3.8`	affected	semver	—
`8.3.9`	affected	semver	—
`8.3.10`	unaffected	semver	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Upgrade the PDM Product Data Management System to version 8.3.10 or later immediately.
Restrict external access to the /Base/BaseService.asmx/DataService endpoint using firewall rules or network segmentation so only trusted internal systems can reach it.
Apply a web application firewall rule or server‑side validation to reject or properly escape unsanitized input in the SortOrder parameter, protecting against future injection attempts.

Generated by OpenCVE AI on May 4, 2026 at 05:21 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact Low

Vulnerable System Availability Impact Low

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

The EPSS score is 0.0003.

Exploitation poc

Automatable yes

Technical Impact partial

References

Link	Providers
https://en.hoteamsoft.com/pdm
https://ucn9h68n9289.feishu.cn/wiki/KvbxwRlmRihO8ZkT1E1c64pdngh
https://vuldb.com/submit/803268
https://vuldb.com/vuln/360902
https://vuldb.com/vuln/360902/cti

History

Mon, 04 May 2026 16:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Shandong Hoteam Software Shandong Hoteam Software pdm Product Data Management System
Vendors & Products		Shandong Hoteam Software Shandong Hoteam Software pdm Product Data Management System

Mon, 04 May 2026 13:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Mon, 04 May 2026 04:30:00 +0000

Type	Values Removed	Values Added
Description		A vulnerability was determined in Shandong Hoteam Software PDM Product Data Management System up to 8.3.9. This affects the function GetQueryMachineGridOnePageData of the file /Base/BaseService.asmx/DataService. This manipulation of the argument SortOrder causes sql injection. The attack can be initiated remotely. Upgrading to version 8.3.10 is able to mitigate this issue. You should upgrade the affected component.
Title		Shandong Hoteam Software PDM Product Data Management System DataService GetQueryMachineGridOnePageData sql injection
Weaknesses		CWE-74 CWE-89
References		https://en.hoteamsoft.com/pdm https://ucn9h68n9289.feishu.cn/wiki/KvbxwRlmRihO8ZkT1E1c64pdngh https://vuldb.com/submit/803268 https://vuldb.com/vuln/360902 https://vuldb.com/vuln/360902/cti
Metrics		cvssV2_0 `{'score': 7.5, 'vector': 'AV:N/AC:L/Au:N/C:P/I:P/A:P/E:ND/RL:OF/RC:C'}` cvssV3_0 `{'score': 7.3, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:X/RL:O/RC:C'}` cvssV3_1 `{'score': 7.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:X/RL:O/RC:C'}` cvssV4_0 `{'score': 6.9, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X'}`

Subscriptions

Shandong Hoteam Software Pdm Product Data Management System

MITRE

Status: PUBLISHED

Assigner: VulDB

Published: 2026-05-04T03:15:27.138Z

Updated: 2026-05-04T12:54:03.162Z

Reserved: 2026-05-03T15:54:31.734Z

Link: CVE-2026-7727

Vulnrichment

Updated: 2026-05-04T12:53:46.113Z

NVD

Status : Deferred

Published: 2026-05-04T05:16:00.800

Modified: 2026-05-04T15:18:40.077

Link: CVE-2026-7727

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-05-04T16:06:10Z

Weaknesses

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact Low

Vulnerable System Availability Impact Low

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Exploitation poc

Automatable yes

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object