Ywoa Security Vulnerabilities and Issues — Ywoa CVE List

Lucene search

YimihomeYwoa

4 matches found

CVE•added 2025/02/12 9:15 p.m.•58 views

CVE-2025-1227

A vulnerability was found in ywoa up to 2024.07.03. It has been rated as critical. This issue affects the function selectList of the file com/cloudweb/oa/mapper/xml/AddressDao.xml. The manipulation leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the p...

8.8CVSS6.8AI score0.00038EPSS

CVE•added 2025/02/12 7:15 p.m.•56 views

CVE-2025-1216

A vulnerability, which was classified as critical, has been found in ywoa up to 2024.07.03. This issue affects the function selectNoticeList of the file com/cloudweb/oa/mapper/xml/OaNoticeMapper.xml. The manipulation of the argument sort leads to sql injection. The attack may be initiated remotely....

8.8CVSS6.8AI score0.00034EPSS

CVE•added 2025/02/12 8:15 p.m.•46 views

CVE-2025-1224

A vulnerability classified as critical was found in ywoa up to 2024.07.03. This vulnerability affects the function listNameBySql of the file com/cloudweb/oa/mapper/xml/UserMapper.xml. The manipulation leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to th...

8.8CVSS7.5AI score0.00038EPSS

CVE•added 2022/09/16 2:15 p.m.•34 views

CVE-2022-38808

ywoa v6.1 is vulnerable to SQL Injection via backend/oa/visual/exportExcel.do interface.

8.8CVSS9AI score0.00078EPSS