CVE-2025-29689

Vulnerability Description

A cross-site scripting (XSS) vulnerability in OA System before v2025.01.01 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the password parameter at /mail/MailController.java.

Vulnerability Details

Published Date

May 14, 2025

Last Modified

May 29, 2025

Source

NVD

CVE-2025-29689

Vulnerability Description

Vulnerability Details

Discussion (0)

Add Comment