CVE-2025-63742

EPSS 0.04% · P13 Updated Dec 12, 2025

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2025-63742

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

SQL Injection vulnerability in function setwxqyAction in file webmain/task/api/loginAction.php in Xinhu Rainrock RockOA 2.7.0 allowing attackers gain sensitive information, including administrator accounts, password hashes, database structure, and other critical data via the shouji and userid parameters.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Xinhu RockOA 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Xinhu RockOA是中国信呼（Xinhu）公司的一个办公OA系统。 Xinhu RockOA 2.7.0版本存在安全漏洞，该漏洞源于文件webmain/task/api/loginAction.php中函数setwxqyAction对参数shouji和userid的错误操作，可能导致SQL注入攻击。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2025-63742

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2025-63742

请登录查看更多情报信息。

Same Patch Batch · n/a · 2025-12-09 · 23 CVEs total

CVE-2025-14284	6.1 MEDIUM	Tiptap Editor 安全漏洞
CVE-2025-64085		PDF-XChange Editor 安全漏洞
CVE-2025-65513		Fetch MCP Server 安全漏洞
CVE-2025-65741		Sublime Text 安全漏洞
CVE-2025-65572		Allsky Camera 安全漏洞
CVE-2025-65882		OpenMPTCProuter 安全漏洞
CVE-2025-65300		Coohom SaaS Platform 安全漏洞
CVE-2025-65573		Allsky Camera 安全漏洞
CVE-2025-65594		Open Solutions For Education openSIS 安全漏洞
CVE-2025-61078		phpIPAM 安全漏洞
CVE-2025-61258		Outsystems Platform Server 安全漏洞
CVE-2025-61074		adata Mitarbeiter Portal 安全漏洞
CVE-2025-64086		PDF-XChange Editor 安全漏洞
CVE-2025-56704		LeptonCMS 安全漏洞
CVE-2025-63739		Xinhu RockOA 安全漏洞
CVE-2025-63740		Xinhu RockOA 安全漏洞
CVE-2025-63738		Xinhu RockOA 安全漏洞
CVE-2025-63737		Xinhu RockOA 安全漏洞
CVE-2025-65288		Mercury MR816v2 安全漏洞
CVE-2025-65289		Mercury MR816v2 安全漏洞

Showing top 20 of 23 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2025-63742

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2025-63742

I. Basic Information for CVE-2025-63742

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2025-63742

III. Intelligence Information for CVE-2025-63742

Same Patch Batch · n/a · 2025-12-09 · 23 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2025-63742

Leave a comment