CVE-2024-37623 Information

Description

Xinhu RockOA v2.6.3 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the /kaoqin/tpl_kaoqin_locationchange.html component.

Reference

https://github.com/rainrocka/xinhu/issues/5