5 matches found
EUVD-2025-2086
Malicious code in bioql PyPI...
CVE-2025-1227 ywoa AddressDao.xml selectList sql injection
A vulnerability was found in ywoa up to 2024.07.03. It has been rated as critical. This issue affects the function selectList of the file com/cloudweb/oa/mapper/xml/AddressDao.xml. The manipulation leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the...
CVE-2025-1227
CVE-2025-1227 affects ywoa up to 2024.07.03, specifically the function selectList in com/cloudweb/oa/mapper/xml/AddressDao.xml. The vulnerability is a SQL injection that can be exploited remotely. Remediation provided in multiple sources is to upgrade to version 2024.07.04. Some entries describe ...
CVE-2025-1224
A vulnerability classified as critical was found in ywoa up to 2024.07.03. This vulnerability affects the function listNameBySql of the file com/cloudweb/oa/mapper/xml/UserMapper.xml. The manipulation leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to...
CVE-2025-1224 ywoa UserMapper.xml listNameBySql sql injection
A vulnerability classified as critical was found in ywoa up to 2024.07.03. This vulnerability affects the function listNameBySql of the file com/cloudweb/oa/mapper/xml/UserMapper.xml. The manipulation leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to...