Every CVE whose affected-product data names Aaluoxiang Oa System, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2025-44033 — CVSS 9.8 (critical): SQL injection vulnerability in oa_system oasys v.1.1 allows a remote attacker to execute arbitrary code via the allDirector() method…
CVE-2025-44034 — CVSS 8.0 (high): SQL injection vulnerability in oa_system oasys v.1.1 allows a remote attacker to execute arbitrary code via the alph parameters in…
CVE-2025-1958 — CVSS 6.3 (medium): A vulnerability, which was classified as critical, has been found in aaluoxiang oa_system 1.0. This issue affects some unknown processing…
CVE-2025-6829 — CVSS 6.3 (medium): A vulnerability was found in aaluoxiang oa_system up to c3a08168c144f27256a90838492c713f55f1b207 and classified as critical. This issue…
CVE-2025-5544 — CVSS 4.3 (medium): A vulnerability was found in aaluoxiang oa_system up to 5b445a6227b51cee287bd0c7c33ed94b801a82a5. It has been rated as problematic…
CVE-2025-5545 — CVSS 4.3 (medium): A vulnerability classified as problematic has been found in aaluoxiang oa_system up to 5b445a6227b51cee287bd0c7c33ed94b801a82a5. This…