5 matches found
CVE-2025-5140
A vulnerability classified as critical has been found in Seeyon Zhiyuan OA Web Application System up to 8.1 SP2. This affects the function this.oursNetService.getData of the file com\ours\www\ehr\openPlatform1\open4ClientType\controller\ThirdMenuController.class. The manipulation of the argument...
CVE-2025-5140
A vulnerability classified as critical has been found in Seeyon Zhiyuan OA Web Application System up to 8.1 SP2. This affects the function this.oursNetService.getData of the file com\ours\www\ehr\openPlatform1\open4ClientType\controller\ThirdMenuController.class. The manipulation of the argument...
CVE-2025-5140
creationtimestamp| type| source ---|---|--- 2025-05-25 02:09:39+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lpxlapx4o422 2025-05-25 02:46:11+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17503 2025-05-25...
CVE-2025-5140
The CVE-2025-5140 entry concerns Seeyon Zhiyuan OA Web Application System (versions up to 8.1 SP2). The vulnerability is in function this.oursNetService.getData within ThirdMenuController.class, where manipulating the url argument enables server-side request forgery (SSRF). Public exploit has bee...
CVE-2025-5140 Seeyon Zhiyuan OA Web Application System ThirdMenuController.class this.oursNetService.getData server-side request forgery
A vulnerability classified as critical has been found in Seeyon Zhiyuan OA Web Application System up to 8.1 SP2. This affects the function this.oursNetService.getData of the file com\ours\www\ehr\openPlatform1\open4ClientType\controller\ThirdMenuController.class. The manipulation of the argument...