Home/Product/hailey888 oa system
Product

hailey888 oa system

18 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2025-44034
all versions
SQL injection vulnerability in oa_system oasys v.1.1 allows a remote attacker to execute arbitrary code via the alph parameters in
8.0HIGH
 CVE-2025-29592
all versions
oasys v1.1 is vulnerable to Directory Traversal in ProcedureController.
5.6MEDIUM
 CVE-2025-44033
all versions
SQL injection vulnerability in oa_system oasys v.1.1 allows a remote attacker to execute arbitrary code via the allDirector() meth
9.8CRITICAL
 CVE-2025-6829
all versions
A vulnerability was found in aaluoxiang oa_system up to c3a08168c144f27256a90838492c713f55f1b207 and classified as critical. This
6.3MEDIUM
 CVE-2025-5545
all versions
A vulnerability classified as problematic has been found in aaluoxiang oa_system up to 5b445a6227b51cee287bd0c7c33ed94b801a82a5. T
4.3MEDIUM
 CVE-2025-5544
all versions
A vulnerability was found in aaluoxiang oa_system up to 5b445a6227b51cee287bd0c7c33ed94b801a82a5. It has been rated as problematic
4.3MEDIUM
 CVE-2025-29691
< 2025-01-01
A cross-site scripting (XSS) vulnerability in OA System before v2025.01.01 allows attackers to execute arbitrary web scripts or HT
6.1MEDIUM
 CVE-2025-29690
< 2025-01-01
A cross-site scripting (XSS) vulnerability in OA System before v2025.01.01 allows attackers to execute arbitrary web scripts or HT
6.1MEDIUM
 CVE-2025-29689
< 2025-01-01
A cross-site scripting (XSS) vulnerability in OA System before v2025.01.01 allows attackers to execute arbitrary web scripts or HT
6.1MEDIUM
 CVE-2025-29688
< 2025-01-01
A cross-site scripting (XSS) vulnerability in OA System before v2025.01.01 allows attackers to execute arbitrary web scripts or HT
6.1MEDIUM
 CVE-2025-29686
< 2025-01-01
A cross-site scripting (XSS) vulnerability in OA System before v2025.01.01 allows attackers to execute arbitrary web scripts or HT
6.1MEDIUM
 CVE-2025-3392
< 2025.01.01
A vulnerability was found in hailey888 oa_system up to 2025.01.01 and classified as problematic. Affected by this issue is the fun
3.5LOW
 CVE-2025-3391
< 2025.01.01
A vulnerability has been found in hailey888 oa_system up to 2025.01.01 and classified as problematic. Affected by this vulnerabili
3.5LOW
 CVE-2025-3390
< 2025.01.01
A vulnerability, which was classified as problematic, was found in hailey888 oa_system up to 2025.01.01. Affected is the function
3.5LOW
 CVE-2025-3389
< 2025.01.01
A vulnerability, which was classified as problematic, has been found in hailey888 oa_system up to 2025.01.01. This issue affects t
3.5LOW
 CVE-2025-3388
< 2025.01.01
A vulnerability classified as problematic was found in hailey888 oa_system up to 2025.01.01. This vulnerability affects the functi
4.3MEDIUM
 CVE-2025-1958
all versions
A vulnerability, which was classified as critical, has been found in aaluoxiang oa_system 1.0. This issue affects some unknown pro
6.3MEDIUM
 CVE-2020-18019
all versions
SQL Injection in Xinhu OA System v1.8.3 allows remote attackers to obtain sensitive information by injecting arbitrary commands in
7.5HIGH
SOC and Response
CVE triage
Stack monitoring
Am I affected
IOC triage
KEV catalog
Recently exploited
Daily brief
Change tracking
Detection Engineering
Coverage workspace
Detection coverage
Coverage check
Telemetry ceiling
SIEM query builder
Sigma rules
SIEM rules
YARA rules
Network rules
D3FEND
Threat Hunting
Threat actors
ATT&CK techniques
Attack paths
Indicators
Atomic tests
Red Team and Pentest
Exploitability triage
Recon pack
Attack paths
CAPEC patterns
Adversary emulation
Compliance and GRC
Framework mapping
Control assessment
Audit view
Atlas Search Threat actors Techniques Tools & malware CWE CAPEC KEV catalog Package vulns
About All capabilities Pricing API docs Live status Privacy policy Terms of service
threatengine.sh