Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

OA — Vulnerabilities & Security Advisories 50

All 50 CVE vulnerabilities found in OA, with AI-generated Chinese analysis, references, and POCs.

Vendor: Jiusi

CVE IDTitleCVSSSeverityPublished
CVE-2025-13249 Jiusi OA OfficeServer unrestricted upload CWE-434 6.3 Medium2025-11-16
CVE-2025-11341 Jinher OA type xml external entity reference CWE-611 7.3 High2025-10-06
CVE-2025-11035 Jinher OA text xml external entity reference CWE-611 6.3 Medium2025-09-26
CVE-2025-10816 Jinher OA XML text xml external entity reference CWE-611 7.3 High2025-09-22
CVE-2025-10092 Jinher OA XML Type xml external entity reference CWE-611 7.3 High2025-09-08
CVE-2025-10091 Jinher OA XML Type xml external entity reference CWE-611 7.3 High2025-09-08
CVE-2025-10090 Jinher OA GetTreeDate.aspx sql injection CWE-89 7.3 High2025-09-08
CVE-2025-9931 Jinher OA POST Request login!changePassWord.action cross site scripting CWE-79 4.3 Medium2025-09-03
CVE-2025-9669 Jinher OA GetTreeDate.aspx sql injection CWE-89 7.3 High2025-08-29
CVE-2025-7824 Jinher OA XmlHttp.aspx xml external entity reference CWE-611 7.3 High2025-07-19
CVE-2025-7823 Jinher OA ProjectScheduleDelete.aspx xml external entity reference CWE-611 7.3 High2025-07-19
CVE-2025-7523 Jinher OA DelTemp.aspx xml external entity reference CWE-611 7.3 High2025-07-13
CVE-2025-3009 Jinher Network OA NetDiskProperty.aspx sql injection CWE-89 6.3 Medium2025-03-31
CVE-2024-10731 Tongda OA check_seal.php sql injection CWE-89 6.3 Medium2024-11-03
CVE-2024-10730 Tongda OA web_show.php sql injection CWE-89 6.3 Medium2024-11-03
CVE-2024-10658 Tongda OA check_seal.php sql injection CWE-89 6.3 Medium2024-11-01
CVE-2024-10657 Tongda OA prcs_info.php sql injection CWE-89 6.3 Medium2024-11-01
CVE-2024-10617 Tongda OA check_seal.php sql injection CWE-89 6.3 Medium2024-11-01
CVE-2024-10616 Tongda OA webSignSubmit.php sql injection CWE-89 6.3 Medium2024-11-01
CVE-2024-10598 Tongda OA Annual Leave data.php improper authorization CWE-285 5.3 Medium2024-10-31
CVE-2024-4903 Tongda OA delete.php sql injection CWE-89 6.3 Medium2024-05-15
CVE-2023-5682 Tongda OA delete.php sql injection CWE-89 5.5 Medium2023-10-20
CVE-2023-5030 Tongda OA delete.php sql injection CWE-89 5.5 Medium2023-09-17
CVE-2023-5026 Tongda OA cross site scripting CWE-79 3.5 Low2023-09-17
CVE-2023-5023 Tongda OA delete.php sql injection CWE-89 5.5 Medium2023-09-17
CVE-2023-5019 Tongda OA delete.php sql injection CWE-89 6.3 Medium2023-09-17
CVE-2023-4852 IBOS OA optimize sql injection CWE-89 6.3 Medium2023-09-09
CVE-2023-4851 IBOS OA edit&op=member sql injection CWE-89 6.3 Medium2023-09-09
CVE-2023-4850 IBOS OA del sql injection CWE-89 6.3 Medium2023-09-09
CVE-2023-4849 IBOS OA trash&op=del sql injection CWE-89 6.3 Medium2023-09-09

All 50 known CVE vulnerabilities affecting OA with full Chinese analysis, references, and POCs where available.