Vulnerabilities > Rockoa > Xinhu > High

DATE CVE VULNERABILITY TITLE RISK
2024-07-31 CVE-2024-7327 SQL Injection vulnerability in Rockoa Xinhu 2.6.2
A vulnerability classified as critical was found in Xinhu RockOA 2.6.2.
network
low complexity
rockoa CWE-89
8.8
8.8
2022-12-19 CVE-2022-45041 SQL Injection vulnerability in Rockoa Xinhu
SQL Injection exits in xinhu < 2.5.0
network
low complexity
rockoa CWE-89
7.5
7.5
2020-12-26 CVE-2020-35388 Unspecified vulnerability in Rockoa Xinhu 2.1.9
rainrocka xinhu 2.1.9 allows remote attackers to obtain sensitive information via an index.php?a=gettotal request in which the ajaxbool value is manipulated to be true.
network
low complexity
rockoa
7.5
7.5