CVE-2025-1216

A vulnerability, which was classified as critical, has been found in ywoa up to 2024.07.03. This issue affects the function selectNoticeList of the file com/cloudweb/oa/mapper/xml/OaNoticeMapper.xml. The manipulation of the argument sort leads to sql injection. The attack may be initiated remotel...

yimioa SQL注入漏洞

yimioa Cloudweb OA is a locally deployed OA software by rabbit individual developers. A security vulnerability exists in yimioa version 2024.07.03 and earlier versions, which originates from the selectNoticeList function of com/cloudweb/oa/mapper/xml/OaNoticeMapper.xml contains a SQL injection...

PT-2024-34464 · Unknown · Qiwen-File

Name of the Vulnerable Software and Affected Versions: qiwen-file version 1.4.0 Description: The issue is related to a SQL injection vulnerability. It affects the component /mapper/NoticeMapper.xml. Recommendations: For qiwen-file version 1.4.0, consider restricting access to the...

qiwen-file 安全漏洞

qiwen-file qiwen.com is a distributed file system from qiwen. It aims to provide users and enterprises with a simple and convenient file storage solution that can manage files with a perfect directory structure system. A security vulnerability exists in qiwen-file v1.4.0, which originates from a...

CVE-2021-40644

An SQL Injection vulnerability exists in oasys oasystem as of 9/7/2021 in resources/mappers/notice-mapper.xml...

CVE-2021-40644

An SQL Injection vulnerability exists in oasys oasystem as of 9/7/2021 in resources/mappers/notice-mapper.xml...