CVE-2025-25582 Information

Description

yimioa before v2024.07.04 was discovered to contain a SQL injection vulnerability via the selectNoticeList() method at /xml/OaNoticeMapper.xml.

Reference

https://gitee.com/r1bbit/yimioa/issues/IBI74K