Recent Vulnerabilities Product List Research Posts Trends Blog Docs About Contact

Published: 04/06/2025 Updated: 04/06/2025

Remote Path Traversal Vulnerability in aaluoxiang oa_system Controller

A path traversal vulnerability exists in aaluoxiang oa_system up to version 5b445a6227b51cee287bd0c7c33ed94b801a82a5. The issue is located in the image function within the ProcedureController.java file. An attacker can remotely manipulate this vulnerability to potentially access unauthorized files or directories. The vulnerability details have been publicly disclosed, and there is a possibility that the exploit could be used. Since the product does not use versioning, determining the exact affected or unaffected releases is not possible.

Vulnerable Product	Search on Vulmon	Subscribe to Product
aaluoxiang oa system

CWE-22 https://nvd.nist.gov https://www.first.org/epss https://github.com/honorseclab/vulns/blob/main/aaluoxiang_oasystem/ArbitaryFileRead02.md https://vuldb.com/?ctiid.310995 https://vuldb.com/?id.310995 https://vuldb.com/?submit.585885 https://github.com/honorseclab/vulns/blob/main/aaluoxiang_oasystem/ArbitaryFileRead02.md

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2025-5545

Vulnerability Summary

References

Vulmon Search

About

Products

Connect