Excellent
OfficeMax and Winc have come together to form a single source supplier for everything your workplace needs to work. Visit our Winc Australia LinkedIn page to learn more.
Excellent
At Staples, Business is Human, which means our people โthink beyond the algorithmโ to deliver for customers. A leader in workspace products and solutions for over 35 years, Staples has thousands of experts dedicated to applying their intuition, expertise, and experience to bring out the best that technology such as AI has to offer. These experts make work easier, smarter, and more efficient for businesses of all sizes. The company operates in North America through eCommerce and direct sales and is headquartered near Boston, Massachusetts. More information about Staples is available at www.staplesadvantage.com. This page supports Staplesโ eCommerce and direct sales business and careers. For news or positions related to Staplesยฎ stores, visit the Staples Stores page.
Security & Compliance Standards Overview
No incidents recorded for OfficeMax Australia in 2025.
No incidents recorded for Staples in 2025.
OfficeMax Australia cyber incidents detection timeline including parent company and subsidiaries
Staples cyber incidents detection timeline including parent company and subsidiaries
An issue was discovered in chinabugotech hutool before 5.8.4 allowing attackers to execute arbitrary expressions that lead to arbitrary method invocation and potentially remote code execution (RCE) via the QLExpressEngine class.
A weakness has been identified in JeecgBoot up to 3.8.2. The impacted element is an unknown function of the file /sys/role/exportXls. This manipulation causes improper authorization. It is possible to initiate the attack remotely. The exploit has been made available to the public and could be exploited. The vendor was contacted early about this disclosure but did not respond in any way.
A security flaw has been discovered in JeecgBoot up to 3.8.2. The affected element is an unknown function of the file /sys/user/exportXls of the component Filter Handler. The manipulation results in improper authorization. The attack may be performed from remote. The exploit has been released to the public and may be exploited. The vendor was contacted early about this disclosure but did not respond in any way.
A vulnerability was identified in JeecgBoot up to 3.8.2. Impacted is an unknown function of the file /sys/tenant/deleteBatch. The manipulation of the argument ids leads to improper authorization. The attack is possible to be carried out remotely. The complexity of an attack is rather high. The exploitability is considered difficult. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.
A vulnerability was determined in JeecgBoot up to 3.8.2. This issue affects some unknown processing of the file /api/getDepartUserList. Executing manipulation of the argument departId can lead to improper authorization. The attack can be executed remotely. This attack is characterized by high complexity. The exploitability is assessed as difficult. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure but did not respond in any way.
