Lucene search
K

119 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:9 p.m.11 views

CVE-2019-25714

Seeyon OA A8 contains an unauthenticated arbitrary file write vulnerability in the /seeyon/htmlofficeservlet endpoint that allows remote attackers to write arbitrary files to the web application root by sending specially crafted POST requests with custom base64-encoded payloads. Attackers can wri...

9.3CVSS6AI score0.00653EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/21 6:31 p.m.9 views

EUVD-2019-20151

Seeyon OA A8 contains an unauthenticated arbitrary file write vulnerability in the /seeyon/htmlofficeservlet endpoint that allows remote attackers to write arbitrary files to the web application root by sending specially crafted POST requests with custom base64-encoded payloads. Attackers can wri...

9.3CVSS6.2AI score0.00653EPSS
Exploits0References8
NVD
NVD
added 2026/04/21 5:16 p.m.6 views

CVE-2019-25714

Seeyon OA A8 contains an unauthenticated arbitrary file write vulnerability in the /seeyon/htmlofficeservlet endpoint that allows remote attackers to write arbitrary files to the web application root by sending specially crafted POST requests with custom base64-encoded payloads. Attackers can wri...

9.3CVSS0.00653EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2026/04/21 4:11 p.m.3 views

CVE-2019-25714 Seeyon Office Anywhere (OA) A8 Unauthenticated Arbitrary File Write via htmlofficeservlet

Seeyon OA A8 contains an unauthenticated arbitrary file write vulnerability in the /seeyon/htmlofficeservlet endpoint that allows remote attackers to write arbitrary files to the web application root by sending specially crafted POST requests with custom base64-encoded payloads. Attackers can wri...

9.3CVSS6.2AI score0.00653EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/04/21 4:11 p.m.5 views

CVE-2019-25714

Seeyon OA A8 contains an unauthenticated arbitrary file write vulnerability in the /seeyon/htmlofficeservlet endpoint that allows remote attackers to write arbitrary files to the web application root by sending specially crafted POST requests with custom base64-encoded payloads. Attackers can wri...

9.3CVSS6.2AI score0.00653EPSS
Exploits0References6Affected Software2
CVE
CVE
added 2026/04/21 4:11 p.m.37 views

CVE-2019-25714

CVE-2019-25714 affects Seeyon OA A8, with an unauthenticated arbitrary file write vulnerability in the /seeyon/htmlofficeservlet endpoint. The issue allows remote attackers to write arbitrary files to the web application root by sending specially crafted POST requests containing base64-encoded pa...

9.3CVSS6.2AI score0.00653EPSS
In wildExploits0References7
Cvelist
Cvelist
added 2026/04/21 4:11 p.m.30 views

CVE-2019-25714 Seeyon Office Anywhere (OA) A8 Unauthenticated Arbitrary File Write via htmlofficeservlet

Seeyon OA A8 contains an unauthenticated arbitrary file write vulnerability in the /seeyon/htmlofficeservlet endpoint that allows remote attackers to write arbitrary files to the web application root by sending specially crafted POST requests with custom base64-encoded payloads. Attackers can wri...

9.3CVSS0.00653EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/04/21 12:0 a.m.15 views

PT-2026-33997

Seeyon OA A8 contains an unauthenticated arbitrary file write vulnerability in the /seeyon/htmlofficeservlet endpoint that allows remote attackers to write arbitrary files to the web application root by sending specially crafted POST requests with custom base64-encoded payloads. Attackers can wri...

9.3CVSS6.2AI score0.00653EPSS
Exploits0References8
CNNVD
CNNVD
added 2026/04/21 12:0 a.m.18 views

Seeyon OA A8 代码问题漏洞

Seeyon OA A8 is a collaborative office management system developed by the Chinese company Seeyon. There is a code vulnerability in Seeyon OA A8. This vulnerability stems from an unauthenticated file writing operation at the /seeyon/htmlofficeservlet endpoint. This could allow a remote attacker to...

9.3CVSS6.2AI score0.00653EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2026/04/21 12:0 a.m.56 views

VulnCheck KEV: CVE-2019-25714

Seeyon OA A8 contains an unauthenticated arbitrary file write vulnerability in the /seeyon/htmlofficeservlet endpoint that allows remote attackers to write arbitrary files to the web application root by sending specially crafted POST requests with custom base64-encoded payloads. Attackers can wri...

9.3CVSS6.2AI score0.00653EPSS
In wildExploits0References2
RedhatCVE
RedhatCVE
added 2026/01/17 9:15 a.m.7 views

CVE-2025-56451

Cross site scripting vulnerability in seeyon Zhiyuan A8+ Collaborative Management Software 7.0 via the topValue parameter to the seeyon/main.do endpoint...

6.1CVSS6.5AI score0.00189EPSS
Exploits1References1
EUVD
EUVD
added 2026/01/17 12:30 a.m.3 views

EUVD-2025-206297

Cross site scripting vulnerability in seeyon Zhiyuan A8+ Collaborative Management Software 7.0 via the topValue parameter to the seeyon/main.do endpoint...

6.1CVSS6AI score0.00189EPSS
Exploits1References3
NVD
NVD
added 2026/01/16 10:16 p.m.6 views

CVE-2025-56451

Cross site scripting vulnerability in seeyon Zhiyuan A8+ Collaborative Management Software 7.0 via the topValue parameter to the seeyon/main.do endpoint...

6.1CVSS0.00189EPSS
Exploits1References2
OSV
OSV
added 2026/01/16 10:16 p.m.4 views

CVE-2025-56451

Cross site scripting vulnerability in seeyon Zhiyuan A8+ Collaborative Management Software 7.0 via the topValue parameter to the seeyon/main.do endpoint...

6.1CVSS5.6AI score0.00189EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/01/16 12:0 a.m.6 views

PT-2026-3324

Name of the Vulnerable Software and Affected Versions seeyon Zhiyuan A8+ Collaborative Management Software version 7.0 Description A cross site scripting issue exists in seeyon Zhiyuan A8+ Collaborative Management Software. The issue is related to the topValue parameter used with the...

6.1CVSS4.8AI score0.00189EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/01/16 12:0 a.m.2 views

CVE-2025-56451

Cross site scripting vulnerability in seeyon Zhiyuan A8+ Collaborative Management Software 7.0 via the topValue parameter to the seeyon/main.do endpoint...

6.1CVSS5.1AI score0.00189EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/01/16 12:0 a.m.21 views

CVE-2025-56451

Cross site scripting vulnerability in seeyon Zhiyuan A8+ Collaborative Management Software 7.0 via the topValue parameter to the seeyon/main.do endpoint...

0.00189EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/01/16 12:0 a.m.2 views

CVE-2025-56451

Cross site scripting vulnerability in seeyon Zhiyuan A8+ Collaborative Management Software 7.0 via the topValue parameter to the seeyon/main.do endpoint...

6.1AI score0.00189EPSS
Exploits1References2
CVE
CVE
added 2026/01/16 12:0 a.m.13 views

CVE-2025-56451

The CVE-2025-56451 entry documents a Cross-Site Scripting (XSS) vulnerability in Seeyon Zhiyuan A8+ Collaborative Management Software 7.0, exploitable via the topValue parameter on the seeyon/main.do endpoint. The issue is described across multiple sources (NVD/Red Hat/EUVD/CIRCL, etc.) with a CV...

6.1CVSS6.1AI score0.00189EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2026/01/16 12:0 a.m.5 views

Seeyon Zhiyuan A8+ security vulnerabilities

Seeyon Zhiyuan A8+ is a collaborative management software developed by the Chinese company Seeyon. Version 7.0 of Seeyon Zhiyuan A8+ contains a security vulnerability. This vulnerability stems from improper handling of the topValue parameter in the seeyon/main.do endpoint, which may lead to...

6.1CVSS5.6AI score0.00189EPSS
Exploits1References3
Rows per page
Query Builder