Filtered by vendor Xinhu
Subscriptions
Filtered by product Rockoa
Subscriptions
Total
2 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2024-6939 | 1 Xinhu | 1 Rockoa | 2024-11-21 | 3.5 Low |
| A vulnerability was found in Xinhu RockOA 2.6.3 and classified as problematic. Affected by this issue is the function okla of the file /webmain/public/upload/tpl_upload.html. The manipulation of the argument callback leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-271994 is the identifier assigned to this vulnerability. | ||||
| CVE-2024-37622 | 1 Xinhu | 1 Rockoa | 2024-11-21 | 6.1 Medium |
| Xinhu RockOA v2.6.3 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the num parameter at /flow/flow.php. | ||||
Page 1 of 1.