Seeyon

By the Year

In 2026 there have been 3 vulnerabilities in Seeyon. Last year, in 2025 Seeyon had 2 security vulnerabilities published. That is, 1 more vulnerability have already been reported in 2026 as compared to last year.

Recent Seeyon Security Vulnerabilities

CVE	Date	Vulnerability	Products
CVE-2025-15447	Jan 04, 2026	CVE-2025-15447
CVE-2025-15446	Jan 04, 2026	CVE-2025-15446
CVE-2025-15427	Jan 02, 2026	CVE-2025-15427
CVE-2021-4461	Oct 30, 2025	Seeyon Zhiyuan OA v7.0 SP1: Session hijack via thirdpartyController.do Seeyon Zhiyuan OA Web Application System versions up to and including 7.0 SP1 improperly decode and parse the `enc` parameter in thirdpartyController.do. The decoded map values can influence session attributes without sufficient authentication/authorization checks, enabling attackers to assign a session to arbitrary user IDs. VulnCheck has observed this vulnerability being exploited in the wild as of 2025-10-30 at 00:30:40.855917 UTC.	Zhiyuan Oa Web Application System
CVE-2025-3402	Apr 08, 2025	SQLi in Seeyon Zhiyuan Interconnect 5.5.2 via /sysform/042/check.js Name A vulnerability was found in Seeyon Zhiyuan Interconnect FE Collaborative Office Platform 5.5.2 and classified as critical. This issue affects some unknown processing of the file /sysform/042/check.js%70. The manipulation of the argument Name leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.	Fe Collaborative Office Platform
CVE-2020-20545	Mar 30, 2021	Cross-Site Scripting (XSS) vulnerability in Zhiyuan G6 Government Collaboration System V6.1SP1 Cross-Site Scripting (XSS) vulnerability in Zhiyuan G6 Government Collaboration System V6.1SP1, via the 'method' parameter to 'seeyon/hrSalary.do'.	G6 Government Collaborative System