7 matches found
EUVD-2025-26264
Malicious code in bioql PyPI...
CVE-2025-9682
A vulnerability has been found in O2OA up to 10.0-410. Affected by this vulnerability is an unknown functionality of the file /xcmsassemblecontrol/jaxrs/design/appdict of the component Personal Profile Page. The manipulation leads to cross site scripting. The attack may be initiated remotely. The...
CVE-2025-9682
A vulnerability has been found in O2OA up to 10.0-410. Affected by this vulnerability is an unknown functionality of the file /xcmsassemblecontrol/jaxrs/design/appdict of the component Personal Profile Page. The manipulation leads to cross site scripting. The attack may be initiated remotely. The...
CVE-2025-9682
CVE-2025-9682 affects O2OA up to version 10.0-410. The vulnerability is a cross-site scripting issue in the Personal Profile Page, caused by manipulation of an unknown functionality in the file /x_cms_assemble_control/jaxrs/design/appdict. It can be exploited remotely, and the exploit has been di...
CVE-2025-9682 O2OA Personal Profile appdict cross site scripting
A vulnerability has been found in O2OA up to 10.0-410. Affected by this vulnerability is an unknown functionality of the file /xcmsassemblecontrol/jaxrs/design/appdict of the component Personal Profile Page. The manipulation leads to cross site scripting. The attack may be initiated remotely. The...
CVE-2025-9682 O2OA Personal Profile appdict cross site scripting
A vulnerability has been found in O2OA up to 10.0-410. Affected by this vulnerability is an unknown functionality of the file /xcmsassemblecontrol/jaxrs/design/appdict of the component Personal Profile Page. The manipulation leads to cross site scripting. The attack may be initiated remotely. The...
O2OA 安全漏洞
O2OA is an enterprise application development platform from O2OA Open Source. A security vulnerability exists in O2OA version 10.0-410 and earlier, which originates from cross-site scripting due to incorrect manipulation of parameters in file /xcmsassemblecontrol/jaxrs/design/appdict...