52 matches found
EUVD-2025-16798
Malicious code in bioql PyPI...
EUVD-2021-27818
Malicious code in bioql PyPI...
EUVD-2025-10065
Malicious code in bioql PyPI...
EUVD-2025-10399
Malicious code in bioql PyPI...
EUVD-2025-10064
Malicious code in bioql PyPI...
CVE-2025-6829 aaluoxiang oa_system External Address Book outAddress sql injection
A vulnerability was found in aaluoxiang oasystem up to c3a08168c144f27256a90838492c713f55f1b207 and classified as critical. This issue affects the function outAddress of the component External Address Book Handler. The manipulation leads to sql injection. The attack may be initiated remotely. Thi...
CVE-2025-6829 aaluoxiang oa_system External Address Book outAddress sql injection
A vulnerability was found in aaluoxiang oasystem up to c3a08168c144f27256a90838492c713f55f1b207 and classified as critical. This issue affects the function outAddress of the component External Address Book Handler. The manipulation leads to sql injection. The attack may be initiated remotely. Thi...
oa_system 注入漏洞
oasystem is a hailey individual developer's application for the day-to-day operation and management of organizations, used by employees and managers. An injection vulnerability exists in oasystem that originates from an external address book handler resulting in SQL injection...
CVE-2025-5545
A vulnerability classified as problematic has been found in aaluoxiang oasystem up to 5b445a6227b51cee287bd0c7c33ed94b801a82a5. This affects the function image of the file src/main/java/cn/gson/oasys/controller/process/ProcedureController.java. The manipulation leads to path traversal. It is...
CVE-2025-5544
A vulnerability was found in aaluoxiang oasystem up to 5b445a6227b51cee287bd0c7c33ed94b801a82a5. It has been rated as problematic. Affected by this issue is the function image of the file src/main/java/cn/gson/oasys/controller/user/UserpanelController.java. The manipulation leads to path traversa...
CVE-2025-5545
A vulnerability classified as problematic has been found in aaluoxiang oasystem up to 5b445a6227b51cee287bd0c7c33ed94b801a82a5. This affects the function image of the file src/main/java/cn/gson/oasys/controller/process/ProcedureController.java. The manipulation leads to path traversal. It is...
CVE-2025-5545
The CVE-2025-5545 instance concerns aaluoxiang oa_system (up to 5b445a6227b51cee287bd0c7c33ed94b801a82a5) where the vulnerability exists in the image function within src/main/java/cn/gson/oasys/controller/process/ProcedureController.java. The root cause is path traversal, enabling remote initiati...
CVE-2025-5545 aaluoxiang oa_system ProcedureController.java image path traversal
A vulnerability classified as problematic has been found in aaluoxiang oasystem up to 5b445a6227b51cee287bd0c7c33ed94b801a82a5. This affects the function image of the file src/main/java/cn/gson/oasys/controller/process/ProcedureController.java. The manipulation leads to path traversal. It is...
CVE-2025-5544 aaluoxiang oa_system UserpanelController.java image path traversal
A vulnerability was found in aaluoxiang oasystem up to 5b445a6227b51cee287bd0c7c33ed94b801a82a5. It has been rated as problematic. Affected by this issue is the function image of the file src/main/java/cn/gson/oasys/controller/user/UserpanelController.java. The manipulation leads to path traversa...
oa_system 路径遍历漏洞
oasystem is aaluoxiang individual developer of an application system for the daily operation and management of organizations, used by employees and managers. A path traversal vulnerability exists in oasystem, which stems from a path traversal caused by incorrect operation of the file...
oa_system 路径遍历漏洞
oasystem is an aaluoxiang individual developer's application for the daily operation and management of organizations, used by employees and managers. A path traversal vulnerability exists in aaluoxiang oasystem, which stems from a path traversal caused by incorrect operation of the file...
CVE-2021-40644
An SQL Injection vulnerability exists in oasys oasystem as of 9/7/2021 in resources/mappers/notice-mapper.xml...
oa_system 跨站脚本漏洞
oasystem is a hailey individual developer's application for the day-to-day operation and management of organizations, used by employees and managers. A security vulnerability exists in oasystem versions prior to v2025.01.01, which stems from improperly cleaned inputs to the parameter userName in...
oa_system 跨站脚本漏洞
oasystem is a hailey individual developer's application for the day-to-day operation and management of organizations, used by employees and managers. A security vulnerability exists in oasystem versions prior to v2025.01.01, which stems from improperly cleaned inputs for the parameter outtype in...
oa_system 跨站脚本漏洞
oasystem is a hailey individual developer's application for the day-to-day operation and management of organizations, used by employees and managers. A security vulnerability exists in oasystem versions prior to v2025.01.01, which stems from improperly cleaned inputs for the parameter title in th...