Vulnerability Details CVE-2025-44034
SQL injection vulnerability in oa_system oasys v.1.1 allows a remote attacker to execute arbitrary code via the alph parameters in src/main/Java/cn/gson/oasys/controller/address/AddrController
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 28.4%
CVSS Severity
CVSS v3 Score 8.0
Products affected by CVE-2025-44034
-
cpe:2.3:a:aaluoxiang:oasys:1.1