CVE-2025-29689 | hailey888 oa_system prior 2025.01.01 MailController.java Password cross site scripting

Inserito da Angelo Barbosa | Mag 15, 2025 | CVE

A vulnerability classified as problematic has been found in hailey888 oa_system. This affects an unknown part of the file /mail/MailController.java. The manipulation of the argument Password leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2025-29689. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-29689 | hailey888 oa_system prior 2025.01.01 MailController.java Password cross site scripting

Post correlati

CVE-2024-34822 | weMail Plugin up to 1.14.2 on WordPress Notice Dismissal authorization

CVE-2024-4939 | wpweaver Weaver Xtreme Theme Support Plugin up to 6.4 on WordPress cross site scripting

CVE-2025-4745 | code-projects Employee Record System 1.0 current_employees.php employeed_id/first_name/middle_name/last_name cross site scripting

CVE-2024-4411 | Mihdan Plugin up to 1.6.5.1 on WordPress Shortcode cross site scripting