24 matches found
EUVD-2022-42839
Malicious code in bioql PyPI...
EUVD-2023-57376
Malicious code in bioql PyPI...
EUVD-2024-33209
Malicious code in bioql PyPI...
EUVD-2024-33210
Malicious code in bioql PyPI...
EUVD-2025-21962
Malicious code in bioql PyPI...
EUVD-2025-21250
Malicious code in bioql PyPI...
EUVD-2023-54692
Malicious code in bioql PyPI...
EUVD-2025-21963
Malicious code in bioql PyPI...
EUVD-2023-44139
Malicious code in bioql PyPI...
EUVD-2024-33228
Malicious code in bioql PyPI...
EUVD-2025-28873
Malicious code in bioql PyPI...
EUVD-2023-34254
Malicious code in bioql PyPI...
CVE-2025-10090 Jinher OA GetTreeDate.aspx sql injection
A flaw has been found in Jinher OA up to 1.2. The impacted element is an unknown function of the file /C6/Jhsoft.Web.departments/GetTreeDate.aspx. Executing manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be us...
CVE-2025-7823
A vulnerability was found in Jinher OA 1.2. It has been declared as problematic. This vulnerability affects unknown code of the file ProjectScheduleDelete.aspx. The manipulation leads to xml external entity reference. The attack can be initiated remotely. The exploit has been disclosed to the...
PT-2025-30137 · Jinher Oa · Jinher Oa
Name of the Vulnerable Software and Affected Versions: Jinher OA version 1.2 Description: A vulnerability exists in Jinher OA 1.2 related to xml external entity reference within the ProjectScheduleDelete.aspx file. This issue can be exploited remotely. The exploit has been publicly disclosed...
CVE-2025-7523
A vulnerability was found in Jinher OA 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /c6/Jhsoft.Web.message/ToolBar/DelTemp.aspx. The manipulation leads to xml external entity reference. The attack may be launched remotely. The exploit has bee...
CVE-2025-7523 Jinher OA DelTemp.aspx xml external entity reference
A vulnerability was found in Jinher OA 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /c6/Jhsoft.Web.message/ToolBar/DelTemp.aspx. The manipulation leads to xml external entity reference. The attack may be launched remotely. The exploit has bee...
CVE-2023-5285
A vulnerability classified as critical was found in Tongda OA 2017. Affected by this vulnerability is an unknown functionality of the file general/hr/recruit/recruitment/delete.php. The manipulation of the argument RECRUITMENTID leads to sql injection. The attack can be launched remotely. The...
CVE-2025-4000 Seeyon Zhiyuan OA Web Application System ssoproxy.jsp cross site scripting
A vulnerability, which was classified as problematic, was found in Seeyon Zhiyuan OA Web Application System 8.1 SP2. Affected is an unknown function of the file seeyon\opt\Seeyon\A8\ApacheJetspeed\webapps\seeyon\ssoproxy\jsp\ssoproxy.jsp. The manipulation of the argument Name leads to cross site...
Command Execution Vulnerability in Zhiyuan OA (CNVD-2024-45618)
Zhiyuan OA is a collaborative management software, a digital collaborative operation platform for medium-sized and large group organizations. A command execution vulnerability exists in Zhiyuan OA, which can be exploited by an attacker to gain server privileges...