CVE-2025-1226 | ywoa up to 2024.07.03 /oa/setup/setup.jsp improper authorization (IBI7PG)

Posted by Angelo Barbosa | Feb 11, 2025 | CVE

A vulnerability was found in ywoa up to 2024.07.03. It has been declared as critical. This vulnerability affects unknown code of the file /oa/setup/setup.jsp. The manipulation leads to improper authorization.

This vulnerability was named CVE-2025-1226. The attack can be initiated remotely. Furthermore, there is an exploit available.

It is recommended to upgrade the affected component.

CVE-2025-1226 | ywoa up to 2024.07.03 /oa/setup/setup.jsp improper authorization (IBI7PG)

Related Posts

CVE-2024-49863 | Linux Kernel up to 6.11.2 scsi vhost_scsi_get_req null pointer dereference

CVE-2024-2242 | Contact Form 7 Plugin up to 5.9 on WordPress cross site scripting

CVE-2024-6102 | Google Chrome up to 126.0.6478.54 Dawn out-of-bounds

CVE-2023-7123 | SourceCodester Medicine Tracking System 1.0 Master.php id/name/description sql injection