CVE-2025-63739 - Xinhu Rainrock RockOA PHP Configuration File Modification

CVE ID : CVE-2025-63739
Published : Dec. 9, 2025, 5:15 p.m. | 36 minutes ago
Description : An issue was discovered in function phpinisaveAction in file webmain/system/cogini/coginiAction.php in Xinhu Rainrock RockOA 2.7.0 allowing attackers to authenticated users to modify PHP configuration files via the a parameter to the index.php endpoint.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

from Latest Vulnerabilities https://ift.tt/tNJR4sl
via IFTTT

CVE-2025-63739 - Xinhu Rainrock RockOA PHP Configuration File Modification

Post a Comment

CVE-2025-0842 | Library-Card-System | SQL Injection Admin Login Bypass In admin.php | Found By Maloy Roy Orko

Categories

Main Tags

Contact Form

Latest Posts

Popular Posts

CVE-2025-0842 | Library-Card-System | SQL Injection Admin Login Bypass In admin.php | Found By Maloy Roy Orko

CVE-2025-0721 | Image_Gallery | view.php?username= | Cross Site Scripting (Reflected XSS) | Found By Maloy Roy Orko

Needyamin | Library-Card-System 1.0 | card.php?id= SQL Injection | Found By Maloy Roy Orko

Contact Form