Zoneland O2oa

25 CVEs affecting Zoneland O2oa. Latest disclosed: 2026-02-07. Critical: 2, High: 1.

Top CVEs affecting Zoneland O2oa
CVESeverityScorePublishedSummary
CVE-2023-47418Critical9.82023-11-30Remote Code Execution (RCE) vulnerability in o2oa version 8.1.2 and before, allows attackers to create a new interface in the service management function to ex…
CVE-2022-22916Critical9.82022-02-17O2OA v6.4.7 was discovered to contain a remote code execution (RCE) vulnerability via /x_program_center/jaxrs/invoke.
CVE-2024-37777High8.82025-08-27O2OA v9.0.3 was discovered to contain a remote code execution (RCE) vulnerability via the mainOutput() function.
CVE-2026-2074Medium6.32026-02-07A vulnerability was identified in O2OA up to 9.0.0. This impacts an unknown function of the file /x_program_center/jaxrs/mpweixin/check of the component HTTP P…
CVE-2025-22994Medium6.12025-01-31O2OA 9.1.3 is vulnerable to Cross Site Scripting (XSS) in Meetings - Settings.
CVE-2024-35591Medium5.42024-05-24An arbitrary file upload vulnerability in O2OA v8.3.8 allows attackers to execute arbitrary code via uploading a crafted PDF file.
CVE-2024-3689Low3.72024-04-12A vulnerability classified as problematic has been found in Zhejiang Land Zongheng Network Technology O2OA up to 20240403. Affected is an unknown function of t…
CVE-2025-9737Low3.52025-08-31A vulnerability was detected in O2OA up to 10.0-410. Affected is an unknown function of the file /x_query_assemble_designer/jaxrs/importmodel of the component…
CVE-2025-9736Low3.52025-08-31A security vulnerability has been detected in O2OA up to 10.0-410. This impacts an unknown function of the file /x_query_assemble_designer/jaxrs/statement of t…
CVE-2025-9735Low3.52025-08-31A weakness has been identified in O2OA up to 10.0-410. This affects an unknown function of the file /x_query_assemble_designer/jaxrs/table of the component Per…
CVE-2025-9734Low3.52025-08-31A security flaw has been discovered in O2OA up to 10.0-410. The impacted element is an unknown function of the file /x_query_assemble_designer/jaxrs/stat of th…
CVE-2025-9719Low3.52025-08-31A weakness has been identified in O2OA up to 10.0-410. This vulnerability affects unknown code of the file /x_processplatform_assemble_designer/jaxrs/script of…
CVE-2025-9718Low3.52025-08-31A security flaw has been discovered in O2OA up to 10.0-410. This affects an unknown part of the file /x_processplatform_assemble_designer/jaxrs/process of the…
CVE-2025-9717Low3.52025-08-31A vulnerability was identified in O2OA up to 10.0-410. Affected by this issue is some unknown functionality of the file /x_organization_assemble_control/jaxrs/…
CVE-2025-9716Low3.52025-08-31A vulnerability was determined in O2OA up to 10.0-410. Affected by this vulnerability is an unknown functionality of the file /x_processplatform_assemble_desig…
CVE-2025-9715Low3.52025-08-31A vulnerability was found in O2OA up to 10.0-410. Affected is an unknown function of the file /x_cms_assemble_control/jaxrs/script of the component Personal Pr…
CVE-2025-9683Low3.52025-08-30A vulnerability was found in O2OA up to 10.0-410. Affected by this issue is some unknown functionality of the file /x_cms_assemble_control/jaxrs/form of the co…
CVE-2025-9682Low3.52025-08-30A vulnerability has been found in O2OA up to 10.0-410. Affected by this vulnerability is an unknown functionality of the file /x_cms_assemble_control/jaxrs/des…
CVE-2025-9681Low3.52025-08-30A flaw has been found in O2OA up to 10.0-410. Affected is an unknown function of the file /x_program_center/jaxrs/agent of the component Personal Profile Page…
CVE-2025-9680Low3.52025-08-30A vulnerability was detected in O2OA up to 10.0-410. This impacts an unknown function of the file /x_portal_assemble_designer/jaxrs/page of the component Perso…