CVE-2025-1227 | ywoa up to 2024.07.03 AddressDao.xml selectList sql injection (IBI7XH)

CVE-2025-1227 | ywoa up to 2024.07.03 AddressDao.xml selectList sql injection (IBI7XH)

A vulnerability was found in ywoa up to 2024.07.03. It has been rated as critical. This issue affects the function selectList of the file com/cloudweb/oa/mapper/xml/AddressDao.xml. The manipulation leads to sql injection. The identification of this vulnerability is CVE-2025-1227. The attack may be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.