CVE-2025-5544 | aaluoxiang oa_system up to 5b445a6227b51cee287bd0c7c33ed94b801a82a5 UserpanelController.java image path traversal

A vulnerability was found in aaluoxiang oa_system up to 5b445a6227b51cee287bd0c7c33ed94b801a82a5. It has been rated as problematic. Affected by this issue is the function image of the file src/main/java/cn/gson/oasys/controller/user/UserpanelController.java. The manipulation leads to path traversal.

This vulnerability is handled as CVE-2025-5544. The attack may be launched remotely. Furthermore, there is an exploit available.

Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor updated releases are available.VulDB Recent EntriesRead More