Low severity3.5NVD Advisory· Published Jul 21, 2024· Updated Jun 17, 2026
CVE-2024-6939
CVE-2024-6939
Description
A vulnerability was found in Xinhu RockOA 2.6.3 and classified as problematic. Affected by this issue is the function okla of the file /webmain/public/upload/tpl_upload.html. The manipulation of the argument callback leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-271994 is the identifier assigned to this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
4- github.com/rainrocka/xinhu/issues/7nvdExploitThird Party Advisory
- vuldb.comnvdThird Party Advisory
- vuldb.comnvdThird Party Advisory
- vuldb.comnvdPermissions Required
News mentions
0No linked articles in our index yet.