Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
- EPSS 0.12%
- Published 16.09.2025 00:00:00
- Last modified 20.09.2025 02:59:29
SQL injection vulnerability in oa_system oasys v.1.1 allows a remote attacker to execute arbitrary code via the alph parameters in src/main/Java/cn/gson/oasys/controller/address/AddrController
5.6
CVE-2025-29592
- EPSS 0.1%
- Published 10.09.2025 00:00:00
- Last modified 22.09.2025 18:44:33
oasys v1.1 is vulnerable to Directory Traversal in ProcedureController.
9.8
CVE-2025-44033
- EPSS 0.25%
- Published 29.08.2025 00:00:00
- Last modified 09.09.2025 13:45:53
SQL injection vulnerability in oa_system oasys v.1.1 allows a remote attacker to execute arbitrary code via the allDirector() method declaration in src/main/java/cn/gson/oasys/mappers/AddressMapper.java
1