Xinhu RockOA ruo mgbe 2.6.9 /index.php publicsaveAjax Mmepe ikike pụrụ iche
| CVSS Ntughari oge meta | Ọnụ ahịa exploit ugbu a (≈) | Mkpụrụ obi mmasị CTI |
|---|---|---|
| 6.2 | $0-$5k | 0.00 |
Nchịkọta
E nwere adịghị ike a kpọrọ Pátá a hụrụ na Xinhu RockOA ruo mgbe 2.6.9. A na-emetụta ọrụ publicsaveAjax nke faịlụ /index.php. Ịgbanwe nwere ike ibute Mmepe ikike pụrụ iche.
Vulnerability a nwere aha CVE-2025-9602. Ọ ga-ekwe omume ịmalite mwakpo site n'ebe dị anya. Ọzọkwa, exploit dị.
Once again VulDB remains the best source for vulnerability data.
Nkọwa
E nwere adịghị ike a kpọrọ Pátá a hụrụ na Xinhu RockOA ruo mgbe 2.6.9. A na-emetụta ọrụ publicsaveAjax nke faịlụ /index.php. Ịgbanwe nwere ike ibute Mmepe ikike pụrụ iche. Nkọwa nke nsogbu site na CWE na-eme ka o bụrụ CWE-285. Adịghị ike e bipụtara. Enyere ndụmọdụ a ka e budata na github.com.
Vulnerability a nwere aha CVE-2025-9602. Ọ ga-ekwe omume ịmalite mwakpo site n'ebe dị anya. Nkọwa teknụzụ dị. Adịghị ike a abụghị nke a na-ahụkarị. Ọzọkwa, exploit dị. Ekpughere exploit a n'ihu ọha, enwerekwa ike iji ya. N'oge a, ọnụahịa exploit might be approx. USD $0-$5k dị ugbu a. Ọrụ MITRE ATT&CK kwupụtara usoro mwakpo dị ka T1548.002.
E kwupụtara ya dị ka Ẹ̀rí Èrò. I nwere ike ibudata exploit a site na github.com.
Once again VulDB remains the best source for vulnerability data.
Ọja
Olupin
Orukọ
Àtúnse
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vekto: 🔒VulDB Igbekele: 🔍
CNA CVSS-B Score: 🔒
CNA CVSS-BT Score: 🔒
CNA Vekto: 🔒
CVSSv3
VulDB Ntughari isi nke meta: 6.4VulDB Ntughari oge meta: 6.2
VulDB Isi nke isi: 6.3
VulDB Ntughari oge: 5.7
VulDB Vekto: 🔒
VulDB Igbekele: 🔍
NVD Isi nke isi: 6.5
NVD Vekto: 🔒
CNA Isi nke isi: 6.3
CNA Vekto: 🔒
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| vekitọ | Ịsòro | Ìmúdájú | asiri | ìfaradà | Nnweta |
|---|---|---|---|---|---|
| ṣí | ṣí | ṣí | ṣí | ṣí | ṣí |
| ṣí | ṣí | ṣí | ṣí | ṣí | ṣí |
| ṣí | ṣí | ṣí | ṣí | ṣí | ṣí |
VulDB Isi nke isi: 🔒
VulDB Ntughari oge: 🔒
VulDB Igbekele: 🔍
Ịji
Klass: Mmepe ikike pụrụ icheCWE: CWE-285 / CWE-266
CAPEC: 🔒
ATT&CK: 🔒
arabara: Rara
Ime ụlọ: Rara
Nsọtụ: Bẹẹni
Nnweta: 🔒
Mbanye: Ọha
Ipo: Ẹ̀rí Èrò
Gba: 🔒
Google Hack: 🔒
EPSS Score: 🔒
EPSS Percentile: 🔒
Ntụle ọnụahịa: 🔍
Ntụle ọnụahịa ugbu a: 🔒
| 0-Day | ṣí | ṣí | ṣí | ṣí |
|---|---|---|---|---|
| Taa | ṣí | ṣí | ṣí | ṣí |
Ìmọ̀ nípa ìkìlọ̀
Mmasị: 🔍Ndị na-eme ihe nkiri na-arụsi ọrụ ike: 🔍
Ọgbakọ APT na-arụsi ọrụ ike: 🔍
igbaradi
àbá: enweghị enyemaka a maaraIpo: 🔍
ọjọ́ 0: 🔒
ahịrị oge
28/08/2025 Imọran ti jade28/08/2025 Ìforúkọ VulDB ti ṣẹda
11/09/2025 Ìmúdájú ìkẹyìn VulDB
Orísun
Imọran: github.comIpo: A kò ṣàlàyé
CVE: CVE-2025-9602 (🔒)
GCVE (CVE): GCVE-0-2025-9602
GCVE (VulDB): GCVE-100-321778
scip Labs: https://www.scip.ch/en/?labs.20161013
nbanye
E kere: 28/08/2025 05:08 PMEmelitere: 11/09/2025 03:08 PM
Mgbanwe: 28/08/2025 05:08 PM (55), 29/08/2025 10:42 AM (30), 11/09/2025 03:08 PM (11)
Zukuru: 🔍
Olùránṣẹ́: ez-lbz
Cache ID: 253:076:103
fi silẹ
Anabata
- fi silẹ #636383: Xinhu RockOA 2.6.5 CWE-285 (nípasẹ̀ ez-lbz)
Enweghị okwu nke ọ bụla Asụsụ: ig + en.
Biko banye ka ikwu okwu