CVE-2025-3391
The CVE-2025-3391 issue affects hailey888 oa_system (versions up to 2025.01.01). The vulnerable component is AddrController.java, function outAddress; improper handling of the outtype parameter enables cross-site scripting (XSS) and the attack can be launched remotely. Exploit publicized. Public ...