CVE-2025-9602

Vulnerability Description

A vulnerability was found in Xinhu RockOA up to 2.6.9. Impacted is the function publicsaveAjax of the file /index.php. Performing manipulation results in improper authorization. The attack is possible to be carried out remotely. The exploit has been made public and could be used.

Vulnerability Details

Published Date

August 29, 2025

Last Modified

September 11, 2025

Source

NVD

CVE-2025-9602

Vulnerability Description

Vulnerability Details

Discussion (0)

Add Comment