cvedb.io
CVE-2025-6829
MEDIUM · CVSS 6.3
EPSS exploitation probability: 0%
Published 2025-06-28T23:15:22.277 · Last modified 2026-06-17T10:02:38.850

Summary

A vulnerability was found in aaluoxiang oa_system up to c3a08168c144f27256a90838492c713f55f1b207 and classified as critical. This issue affects the function outAddress of the component External Address Book Handler. The manipulation leads to sql injection. The attack may be initiated remotely. This product does not use versioning. This is why information about affected and unaffected releases are unavailable.

Affected products

aaluoxiang — oa_system

Does this affect you?

Add your gear to cvedb and we'll alert you only when aaluoxiang ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.