8 matches found
CVE-2026-0587
A security flaw has been discovered in Xinhu Rainrock RockOA up to 2.7.1. Affected is an unknown function of the file rockpagegong.php of the component Cover Image Handler. The manipulation of the argument fengmian results in cross site scripting. The attack can be launched remotely. The exploit...
EUVD-2026-0860
A security flaw has been discovered in Xinhu Rainrock RockOA up to 2.7.1. Affected is an unknown function of the file rockpagegong.php of the component Cover Image Handler. The manipulation of the argument fengmian results in cross site scripting. The attack can be launched remotely. The exploit...
CVE-2026-0587 Xinhu Rainrock RockOA Cover Image rock_page_gong.php cross site scripting
A security flaw has been discovered in Xinhu Rainrock RockOA up to 2.7.1. Affected is an unknown function of the file rockpagegong.php of the component Cover Image Handler. The manipulation of the argument fengmian results in cross site scripting. The attack can be launched remotely. The exploit...
CVE-2026-0587 Xinhu Rainrock RockOA Cover Image rock_page_gong.php cross site scripting
A security flaw has been discovered in Xinhu Rainrock RockOA up to 2.7.1. Affected is an unknown function of the file rockpagegong.php of the component Cover Image Handler. The manipulation of the argument fengmian results in cross site scripting. The attack can be launched remotely. The exploit...
PT-2026-1274
Name of the Vulnerable Software and Affected Versions Xinhu Rainrock RockOA versions up to 2.7.1 Description A security flaw exists in Xinhu Rainrock RockOA up to version 2.7.1. The issue is related to cross site scripting within the Cover Image Handler component, specifically in the file rock pa...
CVE-2025-0722 needyamin image_gallery Cover Image gallery.php unrestricted upload
A vulnerability classified as critical was found in needyamin imagegallery 1.0. This vulnerability affects unknown code of the file /admin/gallery.php of the component Cover Image Handler. The manipulation of the argument image leads to unrestricted upload. The attack can be initiated remotely. T...
PT-2025-4022 · Unknown · Needyamin Image Gallery
Name of the Vulnerable Software and Affected Versions: needyamin image gallery version 1.0 Description: A critical issue was found in the Cover Image Handler component of the file /admin/gallery.php, allowing for unrestricted upload through the manipulation of the image argument. This can be...
image_gallery 安全漏洞
imagegallery is an image gallery management system by the individual developer Md. Yamin Hossain of Bangladesh. A security vulnerability exists in version 1.0 of imagegallery, which stems from the mishandling of the image parameter by the Cover Image Handler component in the /admin/gallery.php...