Rockoa

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:n/a:rockoa:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorN/A (22f567d3-1203-528c-8f0e-3eb9c2f6ca78)
ProductRockoa (3fd52af0-6d1f-5bc4-9f4a-66b2105f8b41)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2023-1773 vulnerable 2026-06-08 05:52:37.014237 Rockoa Configuration File webmainConfig.php code injection
MEDIUM (6.3)
A vulnerability was found in Rockoa 2.3.2. It has been declared as critical. This vulnerability affects unknown code of the file webmainConfig.php of the component Configuration File Handler. The manipulation leads to code injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-224674 is the identifier assigned to this vulnerability.
Published: 2023-03-31T12:00:06.260Z
Updated: 2025-02-11T18:41:37.334Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2023-1501 vulnerable 2026-06-08 05:52:36.015389 RockOA acloudCosAction.php.SQL runAction unrestricted upload
MEDIUM (6.3)
A vulnerability, which was classified as critical, was found in RockOA 2.3.2. This affects the function runAction of the file acloudCosAction.php.SQL. The manipulation of the argument fileid leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-223401 was assigned to this vulnerability.
Published: 2023-03-19T20:00:05.695Z
Updated: 2024-08-02T05:49:11.673Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.