23 matches found
EUVD-2025-19462
Malicious code in bioql PyPI...
EUVD-2025-16798
Malicious code in bioql PyPI...
EUVD-2025-16793
Malicious code in bioql PyPI...
CVE-2025-6829
A vulnerability was found in aaluoxiang oasystem up to c3a08168c144f27256a90838492c713f55f1b207 and classified as critical. This issue affects the function outAddress of the component External Address Book Handler. The manipulation leads to sql injection. The attack may be initiated remotely. Thi...
CVE-2025-6829 aaluoxiang oa_system External Address Book outAddress sql injection
A vulnerability was found in aaluoxiang oasystem up to c3a08168c144f27256a90838492c713f55f1b207 and classified as critical. This issue affects the function outAddress of the component External Address Book Handler. The manipulation leads to sql injection. The attack may be initiated remotely. Thi...
CVE-2025-6829
CVE-2025-6829 affects aaluoxiang oa_system (up to commit c3a08168c144f27256a90838492c713f55f1b207) with the External Address Book Handler’s outAddress function. The vulnerability is a SQL injection due to manipulation of outAddress, and is capable of remote initiation. Public details consistently...
CVE-2025-6829 aaluoxiang oa_system External Address Book outAddress sql injection
A vulnerability was found in aaluoxiang oasystem up to c3a08168c144f27256a90838492c713f55f1b207 and classified as critical. This issue affects the function outAddress of the component External Address Book Handler. The manipulation leads to sql injection. The attack may be initiated remotely. Thi...
PT-2025-27333 · Unknown · Aaluoxiang Oa System
Name of the Vulnerable Software and Affected Versions: aaluoxiang oa system up to c3a08168c144f27256a90838492c713f55f1b207 Description: A critical issue was found in the outAddress function of the External Address Book Handler component, leading to SQL injection. The attack can be initiated...
CVE-2025-5545
A vulnerability classified as problematic has been found in aaluoxiang oasystem up to 5b445a6227b51cee287bd0c7c33ed94b801a82a5. This affects the function image of the file src/main/java/cn/gson/oasys/controller/process/ProcedureController.java. The manipulation leads to path traversal. It is...
CVE-2025-5544
A vulnerability was found in aaluoxiang oasystem up to 5b445a6227b51cee287bd0c7c33ed94b801a82a5. It has been rated as problematic. Affected by this issue is the function image of the file src/main/java/cn/gson/oasys/controller/user/UserpanelController.java. The manipulation leads to path traversa...
CVE-2025-5545
A vulnerability classified as problematic has been found in aaluoxiang oasystem up to 5b445a6227b51cee287bd0c7c33ed94b801a82a5. This affects the function image of the file src/main/java/cn/gson/oasys/controller/process/ProcedureController.java. The manipulation leads to path traversal. It is...
CVE-2025-5545 aaluoxiang oa_system ProcedureController.java image path traversal
A vulnerability classified as problematic has been found in aaluoxiang oasystem up to 5b445a6227b51cee287bd0c7c33ed94b801a82a5. This affects the function image of the file src/main/java/cn/gson/oasys/controller/process/ProcedureController.java. The manipulation leads to path traversal. It is...
CVE-2025-5545 aaluoxiang oa_system ProcedureController.java image path traversal
A vulnerability classified as problematic has been found in aaluoxiang oasystem up to 5b445a6227b51cee287bd0c7c33ed94b801a82a5. This affects the function image of the file src/main/java/cn/gson/oasys/controller/process/ProcedureController.java. The manipulation leads to path traversal. It is...
CVE-2025-5545
The CVE-2025-5545 instance concerns aaluoxiang oa_system (up to 5b445a6227b51cee287bd0c7c33ed94b801a82a5) where the vulnerability exists in the image function within src/main/java/cn/gson/oasys/controller/process/ProcedureController.java. The root cause is path traversal, enabling remote initiati...
CVE-2025-5544 aaluoxiang oa_system UserpanelController.java image path traversal
A vulnerability was found in aaluoxiang oasystem up to 5b445a6227b51cee287bd0c7c33ed94b801a82a5. It has been rated as problematic. Affected by this issue is the function image of the file src/main/java/cn/gson/oasys/controller/user/UserpanelController.java. The manipulation leads to path traversa...
CVE-2025-5544 aaluoxiang oa_system UserpanelController.java image path traversal
A vulnerability was found in aaluoxiang oasystem up to 5b445a6227b51cee287bd0c7c33ed94b801a82a5. It has been rated as problematic. Affected by this issue is the function image of the file src/main/java/cn/gson/oasys/controller/user/UserpanelController.java. The manipulation leads to path traversa...
oa_system 路径遍历漏洞
oasystem is an aaluoxiang individual developer's application for the daily operation and management of organizations, used by employees and managers. A path traversal vulnerability exists in aaluoxiang oasystem, which stems from a path traversal caused by incorrect operation of the file...
PT-2025-23679 · Unknown · Aaluoxiang Oa System
Name of the Vulnerable Software and Affected Versions: aaluoxiang oa system up to 5b445a6227b51cee287bd0c7c33ed94b801a82a5 Description: A problematic vulnerability has been found in aaluoxiang oa system, affecting the image function of the file...
CVE-2025-1958
A vulnerability, which was classified as critical, has been found in aaluoxiang oasystem 1.0. This issue affects some unknown processing of the file src/main/resources/mappers/address-mapper.xml. The manipulation of the argument outtype leads to sql injection. The attack may be initiated remotely...
CVE-2025-1958
A vulnerability, which was classified as critical, has been found in aaluoxiang oasystem 1.0. This issue affects some unknown processing of the file src/main/resources/mappers/address-mapper.xml. The manipulation of the argument outtype leads to sql injection. The attack may be initiated remotely...