CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

EUVD•added 2025/12/09 6:30 p.m.•5 views

EUVD-2025-202292

An issue was discovered in function phpinisaveAction in file webmain/system/cogini/coginiAction.php in Xinhu Rainrock RockOA 2.7.0 allowing attackers to authenticated users to modify PHP configuration files via the a parameter to the index.php endpoint...

6.3AI score0.00204EPSS

Exploits1References2

OSV•added 2024/10/23 10:15 p.m.•2 views

CVE-2024-48213

RockOA v2.6.5 is vulnerable to Directory Traversal in webmain/system/beifen/beifenAction.php...

4.3CVSS5.8AI score0.00633EPSS

Exploits0References1

NVD•added 2024/10/23 10:15 p.m.•12 views

CVE-2024-48213

RockOA v2.6.5 is vulnerable to Directory Traversal in webmain/system/beifen/beifenAction.php...

4.3CVSS0.00633EPSS

Exploits0References1

NVD•added 2021/01/26 6:15 p.m.•15 views

CVE-2020-21147

RockOA V1.9.8 is affected by a cross-site scripting XSS vulnerability which allows remote attackers to send malicious code to the administrator and execute JavaScript code, because webmain/flow/input/modeemailmAction.php does not perform strict filtering...

4.8CVSS5AI score0.00624EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by