泛微OA 漏洞列表
共找到 107 个与 泛微OA 相关的漏洞
📅 加载漏洞趋势中...
- 2025-09-19泛微OA /dwr/call/plaincall/ 权限绕过漏洞
- 2025-09-09泛微OA weaver.common.Ctrl 任意文件上传漏洞
- POC 2025-09-09泛微OA ShowDocsImage SQL注入漏洞
- POC 2025-09-04泛微OA E-Cology Action.jsp mobile.skin.SkinAction 任意文件上传漏洞
- 2025-09-01e-office-v10-officeserver-upload: 泛微OA E-Office OfficeServer.php 任意文件上传漏洞
- 2025-08-21泛微 OA E-Cology deleteUserRequestInfoByXml 文件读取漏洞(CVE-2023-2806)
- 2025-08-21泛微OA /weaver/weaver.file.FileDownloadForOutDoc SQL 注入漏洞
- POC 2025-08-01CNVD-2019-32204: 泛微OA E-Cology BshServlet 远程代码执行漏洞
- POC 2025-08-01CNVD-2021-33202: 泛微OA E-Cology LoginSSO.jsp SQL注入漏洞
- POC 2025-08-01CNVD-2021-49104: 泛微OA E-Office UploadFile.php 任意文件上传漏洞
- POC 2025-08-01CNVD-2023-12632: 泛微 OA e-cology v9 sql 注入
- POC 2025-08-01ecology-e-office-mysql-config-leak: 泛微OA E-Office mysql_config.ini 数据库信息泄漏
- POC 2025-08-01e-bridge-saveyzjfile-file-read: 泛微OA E-Bridge saveYZJFile 任意文件读取
- POC 2025-08-01ecology-arbitrary-file-upload: 泛微OA e-cology V9前台任意上传漏洞
- POC 2025-08-01e-cology-e-office-officeserver-file-read: 泛微OA E-Office officeserver.php 任意文件读取漏洞
- POC 2025-08-01e-cology-filedownload-directory-traversal: 泛微OA e-cology 文件下载目录遍历
- POC 2025-08-01e-cology-getsqldata-sql-inject: 泛微OA E-Cology getSqlData SQL注入漏洞
- POC 2025-08-01e-cology-hrmcareerapplyperview-sqli: 泛微OA E-Cology HrmCareerApplyPerView.jsp SQL注入漏洞
- POC 2025-08-01e-cology-jqueryfiletree-ile-inclusion: 泛微OA E-Cology jqueryFileTree.jsp 目录遍历漏洞
- POC 2025-08-01e-cology-oa-e-weaver-signature-download: 泛微 OA E-Weaver SignatureDownLoad 任意文件读取
- POC 2025-08-01e-cology-verify-quick-login-user-login: 泛微OA E-Cology VerifyQuickLogin.jsp 任意管理员登录漏洞
- POC 2025-08-01e-cology-workflowcentertreedata-sqli: 泛微OA E-Cology WorkflowCenterTreeData SQL注入漏洞
- POC 2025-08-01ecology-filedownloadforoutdoc-sqli: 泛微 OA filedownloadforoutdoc - SQL injection
- POC 2025-08-01e-cology-syncuserinfo-sqli: 泛微OA e-cology syncuserinfo SQL注入漏洞
- POC 2025-08-01ecology-oa-deleteuserrequestinfobyxml-xxe: 泛微 OA deleteUserRequestInfoByXml XXE
- 2025-07-10泛微OA block_content.php SQL注入漏洞
- 2025-07-07泛微OA /api/workflow/regform/remarkOperate 远程代码执行漏洞
- 2025-07-04泛微OA mobilemode/public.jsp 任意用户登录漏洞
- 2025-07-02泛微OA前台登录绕过&后台代码执行漏洞
- 2025-04-23泛微OA E-cology /mobile/plugin/plugin.xml 存在未授权访问漏洞
- 2025-04-14泛微OA E-cology SQL注入漏洞
- 2025-02-11泛微OA CustomResourceServlet 后台文件上传漏洞
- 2025-01-15泛微OA ReceiveRequestInfoByXml XML实体注入漏洞
- POC 2025-01-10泛微OA ReceiveTodoRequestByXml XML实体注入漏洞
- 2024-12-26泛微OA E-Cology ReceiveTodoRequestByJson SQL注入漏洞
- 2024-12-26泛微OA E-Cology ReceiveRequestInfoByJson SQL注入漏洞
- 2024-12-26泛微OA E-Cology ProcessDoneRequestByJson SQL注入漏洞
- 2024-12-17泛微OA SQL注入漏洞
- 2024-12-17泛微OA weaver.email.FileDownloadLocation SQL注入漏洞
- 2024-11-21泛微OA /api/hrm/secondarypwd/checkPassword 远程代码执行漏洞
- 2024-11-21泛微OA /api/ec/dev/app/join 远程代码执行漏洞
- 2024-11-14泛微OA E-cology getResourceInfo SQL注入漏洞
- 2024-11-08泛微OA E-cology WorkflowServiceXml getUserId SQL注入漏洞
- 2024-11-05泛微OA E-Cology QRcodeBuildAction SQL注入漏洞
- 2024-09-20泛微OA E-Cology /messager/users.data 信息泄漏漏洞
- 2024-08-16泛微 OA filedownload.jsp 目录遍历漏洞
- 2024-08-14泛微OA ecology 敏感信息泄露及越权登录漏洞
- 2024-08-05泛微OA E-Cology deleteRequestInfoByXml XXE漏洞
- 2024-08-01泛微OA E-cology /cloudstore/ecode/setup/ 信息泄露漏洞
- 2024-07-31泛微OA E-cology ProcessOverRequestByJson SQL注入漏洞
- 2024-07-30泛微OA HrmService SQL注入漏洞
- 2024-07-26泛微OA FileDownloadLocation SQL注入绕过漏洞
- 2024-07-25泛微OA E-Cology 远程代码执行漏洞
- 2024-07-10泛微 OA getLabelByModule SQL注入漏洞
- 2024-07-10泛微OA FileDownloadLocation SQL注入漏洞
- 2024-07-08泛微OA getFileViewUrl 服务端请求伪造漏洞
- 2024-07-02泛微OA BlogService接口 writeBlogReadFlag SQL注入漏洞
- 2024-06-05泛微OA RTXAPISVR接口 敏感信息泄露漏洞
- 2024-04-17泛微OA Validator.ifNewsCheckOutByCurrentUser SQL注入漏洞
- 2024-04-15泛微OA ProcessOverRequestByXml 任意文件读取漏洞
- 2024-04-01泛微OA /cloudstore/system/#/sys 未授权访问漏洞
- POC 2024-01-11泛微OA E-Cology Action.jsp mobile.skin.SkinAction 任意文件上传漏洞
- 2023-12-15泛微OA 远程命令执行漏洞
- 2023-12-07泛微OA E-cology getdata.jsp 用户名枚举漏洞
- 2023-09-11泛微OA E-Cology weaver.mgms.WorkflowRequestServlet XXE漏洞
- 2023-08-28泛微OA 后台任意文件上传漏洞
- 2023-07-06泛微OA 前台任意SQL语句执行
- 2023-06-15泛微OA办公系统 PluginViewServlet 认证绕过漏洞
- 2023-06-12泛微OA E-Cology XXE漏洞
- 2023-06-12泛微OA e-cology Action.jsp MobileAppUploadAction 文件上传漏洞
- 2023-06-01泛微OA E-Office mysql数据库信息泄漏
- 2023-04-12泛微OA uploadFileClient.jsp 任意文件上传漏洞
- 2022-12-30泛微OA weaver.common.Ctrl 任意文件上传漏洞
- 2022-09-15泛微OA fileupload/uploadfile任意文件上传漏洞
- 2022-05-10泛微OA E-Cology getSqlData SQL注入漏洞
- 2021-05-17泛微OA weaver.common 任意文件上传
- 2021-05-14泛微OA E-cology WorkflowServiceXml 远程代码执行漏洞
- 2021-04-30泛微OA8 前台SQL注入
- 2021-04-28泛微OAV9 前台uploadOperation.jsp 文件上传漏洞
- 2021-03-11泛微OA bsh.servlet.BshServlet 远程代码执行漏洞
- 2021-01-19泛微OA /weaver/ln.FileDownload 任意文件读取漏洞
- 2021-01-19泛微OA_org.springframework.web.servlet.ResourceServlet敏感信息泄露
- 2021-01-19泛微OA系统users.data未授权访问
- 2021-01-19泛微OA_/web/careerapply/HrmCareerApplyAdd.jsp参数注入
- 2021-01-19泛微OA_/page/element/news/more.jsp参数注入
- 2021-01-19泛微OA_meeting/Maint/MeetingTypeCheck.jsp参数注入
- 2021-01-19泛微OA_/web/careerapply/HrmCareerApplyWorkView.jsp参数注入
- 2021-01-19泛微OA_/web/careerapply/HrmCareerApplyWorkEdit.jsp参数注入
- 2021-01-19泛微OA_web/careerapply/HrmCareerApplyPerView.jsp参数注入
- 2021-01-19泛微OA_/web/careerapply/HrmCareerApplyPerEdit.jsp参数注入
- 2021-01-19泛微OA_HrmCareerApplyWorkView.jsp参数注入
- 2021-01-19泛微OA_HrmCareerApplyWorkEdit.jsp参数注入
- 2021-01-19泛微OA_HrmCareerApplyPerView.jsp参数注入
- 2021-01-19泛微OA_HrmCareerApplyPerEdit.jsp参数注入
- 2021-01-19泛微OA_weaver.email.FileDownloadLocation参数注入
- 2021-01-19泛微OA uploadOperation.jsp任意文件上传漏洞
- 2021-01-19泛微OA e-cology SQL注入漏洞
- 2021-01-19泛微OA Bsh 远程代码执行漏洞
- 2021-01-19泛微OA系统 SyncUserInfo.jsp接口信息泄露漏洞
- 2021-01-19泛微OA系统officeserver.php页面TEMPLATE参数-任意页面上传
- 2021-01-19泛微OA系统jqueryFileTree.jsp页面dir参数-信息泄露
- 2021-01-19泛微OA通用系统PreDownload.jsp页面url参数-SQL注入
- 2021-01-19泛微OA系统HrmCareerApplyWorkView.jsp页面id参数-SQL注入
- 2021-01-19泛微OA系统HrmCareerApplyWorkEdit.jsp页面id参数-SQL注入
- 2021-01-19泛微OA系统HrmCareerApplyPerView.jsp页面id参数-SQL注入
- 2021-01-19泛微OA系统HrmCareerApplyPerEdit.jsp页面id参数-SQL注入
- 2021-01-19泛微OA系统com.eweaver.base.DataAction页面sql参数-SQL注入