Aaluoxiang Oa_system
7 CVEs affecting Aaluoxiang Oa_system. Latest disclosed: 2025-09-16. Critical: 1, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-44033 | Critical | 9.8 | 2025-08-29 | SQL injection vulnerability in oa_system oasys v.1.1 allows a remote attacker to execute arbitrary code via the allDirector() method declaration in src/main/ja… |
CVE-2025-44034 | High | 8.0 | 2025-09-16 | SQL injection vulnerability in oa_system oasys v.1.1 allows a remote attacker to execute arbitrary code via the alph parameters in src/main/Java/cn/gson/oasys/… |
CVE-2025-6829 | Medium | 6.3 | 2025-06-28 | A vulnerability was found in aaluoxiang oa_system up to c3a08168c144f27256a90838492c713f55f1b207 and classified as critical. This issue affects the function ou… |
CVE-2025-1958 | Medium | 6.3 | 2025-03-04 | A vulnerability, which was classified as critical, has been found in aaluoxiang oa_system 1.0. This issue affects some unknown processing of the file src/main/… |
CVE-2025-29592 | Medium | 5.6 | 2025-09-10 | oasys v1.1 is vulnerable to Directory Traversal in ProcedureController. |
CVE-2025-5545 | Medium | 4.3 | 2025-06-04 | A vulnerability classified as problematic has been found in aaluoxiang oa_system up to 5b445a6227b51cee287bd0c7c33ed94b801a82a5. This affects the function imag… |
CVE-2025-5544 | Medium | 4.3 | 2025-06-03 | A vulnerability was found in aaluoxiang oa_system up to 5b445a6227b51cee287bd0c7c33ed94b801a82a5. It has been rated as problematic. Affected by this issue is t… |