An issue was discovered in file index.php in Xinhu Rainrock RockOA 2.7.0 allowing attackers to gain sensitive information via phpinfo via the a parameter to the index.php.
GHSA-w82f-vrwp-wv5p: An issue was discovered in file index.php in Xinhu Rainrock RockOA 2.7.0 allowing attackers to...
Xinhu Rainrock RockOA 2.7.0 has a vulnerability in index.php allowing attackers to gain sensitive information via phpinfo through the 'a' parameter.