NewSoftOA developed by NewSoft has an OS Command Injection vulnerability, allowing unauthenticated local attackers to inject arbitrary OS commands and execute them on the server.
NewSoftOA developed by
Exploit
CVE-2026-5965
NVD
Refer to CVE-2026-5965 NVD advisory