CVE-2023-47418 Information

Description

Remote Code Execution (RCE) vulnerability in o2oa version 8.1.2 and before allows attackers to create a new interface in the service management function to execute JavaScript.

Reference

https://github.com/Onlyning/O2OA https://gist.github.com/Onlyning/0cf7b1c597a36dd3a2e9ec948b881ac8