3 matches found
SQL Injection Vulnerability in Xinhoo Collaboration Office v1.8.3
Xinhuo Co-operation Office System is an open source and cross-platform office system. SQL injection vulnerability exists in Xinhao Co-operation Office v1.8.3, which can be exploited by attackers to obtain sensitive database information...
Multiple Reflective Cross-Site Scripting Vulnerabilities in Xinhao Collaboration Office System
Xinhuo coworking system is an open source office system, cross-platform system, support APP, pc web version, pc client and so on. There are multiple reflective cross-site scripting vulnerabilities in Xinhao Collaboration Office System. Because the gettotal parameter is not filtered, resulting in...
Stored Cross-Site Scripting Vulnerability in the Location of Posted Messages in the Web Version of Xinhao Office Software
Xinhoo builds an Internet-based enterprise management platform for enterprises. A stored cross-site scripting vulnerability exists in the web version of Xinhao Office Software at the location of the published message. Due to the use of ordinary user login xiaoqiao, daqiao, in the " send to "...