Shodan
Vulnerabilities
Vulnerable Software
Rockoa:  >> Xinhu  >> 2.6.3  Security Vulnerabilities
CVE-2024-57151
SQL Injection vulnerability in rainrocka xinhu v.2.6.5 and before allows a remote attacker to execute arbitrary code via the inputAction.php file and the saveAjax function
CVSS Score
6.8
EPSS Score
0.002
Published
2025-03-18
CVE-2024-37622
Xinhu RockOA v2.6.3 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the num parameter at /flow/flow.php.
CVSS Score
6.1
EPSS Score
0.006
Published
2024-06-17
CVE-2024-37623
Xinhu RockOA v2.6.3 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the /kaoqin/tpl_kaoqin_locationchange.html component.
CVSS Score
6.1
EPSS Score
0.006
Published
2024-06-17
CVE-2024-37624
Xinhu RockOA v2.6.3 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the /chajian/inputChajian.php. component.
CVSS Score
6.1
EPSS Score
0.001
Published
2024-06-17


Products
Pricing
Contact Us

Shodan ® - All rights reserved