CVE-2025-22994

Medium CVSS: 6.1

O2OA 9.1.3 is vulnerable to Cross Site Scripting (XSS) in Meetings - Settings.

Vendor

Product

CWE

Yayın Tarihi

2025-01-31 16:15:35

Güncelleme

2025-09-15 18:17:11

Source Identifier

cve@mitre.org

KEV Date Added

CWE-79 O2oa MEDIUM Zoneland 2025

https://github.com/o2oa/o2oa/issues/167

Medium

CVE-2026-2074

A vulnerability was identified in O2OA up to 9.0.0. This impacts an unknown function of the file /x_program_center/jaxrs…

Medium

CVE-2025-9737

A vulnerability was detected in O2OA up to 10.0-410. Affected is an unknown function of the file /x_query_assemble_desig…

Medium

CVE-2025-9735

A weakness has been identified in O2OA up to 10.0-410. This affects an unknown function of the file /x_query_assemble_de…

Medium

CVE-2025-9736

A security vulnerability has been detected in O2OA up to 10.0-410. This impacts an unknown function of the file /x_query…

Medium

CVE-2025-9734

A security flaw has been discovered in O2OA up to 10.0-410. The impacted element is an unknown function of the file /x_q…

Medium

CVE-2025-9718

A security flaw has been discovered in O2OA up to 10.0-410. This affects an unknown part of the file /x_processplatform_…