Unrated severityNVD Advisory· Published Dec 9, 2025· Updated Dec 10, 2025
CVE-2025-63738
CVE-2025-63738
Description
An issue was discovered in file index.php in Xinhu Rainrock RockOA 2.7.0 allowing attackers to gain sensitive information via phpinfo via the a parameter to the index.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: =2.7.0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.