Critical severity9.8NVD Advisory· Published May 8, 2024· Updated Jun 17, 2026
CVE-2024-25525
CVE-2024-25525
Description
RuvarOA v6.01 and v12.01 were discovered to contain a SQL injection vulnerability via the filename parameter at /WorkFlow/OfficeFileDownload.aspx.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- RuvarOA/RuvarOAdescription
Patches
Vulnerability mechanics
References
1- gist.github.com/Mr-xn/bc8261a5c3e35a72768723acf1da358dnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.