5 matches found
CVE-2025-3390
A vulnerability, which was classified as problematic, was found in hailey888 oasystem up to 2025.01.01. Affected is the function addandchangeday of the file cn/gson/oass/controller/daymanager/DaymanageController.java of the component Backend. The manipulation of the argument scheduleList leads to...
CVE-2025-3390
creationtimestamp| type| source ---|---|--- 2025-04-08 00:46:13+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/10807 2025-04-08 03:06:56+00:00| seen| https://t.me/cvedetector/22367 2025-04-08 03:17:44+00:00| seen|...
CVE-2025-3390 hailey888 oa_system Backend DaymanageController.java addandchangeday cross site scripting
A vulnerability, which was classified as problematic, was found in hailey888 oasystem up to 2025.01.01. Affected is the function addandchangeday of the file cn/gson/oass/controller/daymanager/DaymanageController.java of the component Backend. The manipulation of the argument scheduleList leads to...
CVE-2025-3390
CVE-2025-3390 affects hailey888 oa_system (Backend) with a flaw in DaymanageController.java:addandchangeday. Manipulation of the argument scheduleList enables cross-site scripting. The vulnerability can be exploited remotely, and the exploit has been disclosed publicly. The product uses a rolling...
CVE-2025-3390 hailey888 oa_system Backend DaymanageController.java addandchangeday cross site scripting
A vulnerability, which was classified as problematic, was found in hailey888 oasystem up to 2025.01.01. Affected is the function addandchangeday of the file cn/gson/oass/controller/daymanager/DaymanageController.java of the component Backend. The manipulation of the argument scheduleList leads to...