| عنوان | Jinher OA V1.2 SQL Injection |
|---|
| الوصف | A critical SQL injection vulnerability was discovered in Jinhe OA's /C6/Jhsoft.Web.departments/GetTreeDate.aspx component. The "id" parameter is vulnerable to SQL injection, allowing unauthenticated attackers to execute arbitrary SQL queries on the backend database. |
|---|
| المصدر | ⚠️ https://github.com/Cstarplus/CVE/issues/1 |
|---|
| المستخدم | abc_123456 (UID 89341) |
|---|
| ارسال | 30/08/2025 03:11 PM (9 أشهر منذ) |
|---|
| الاعتدال | 08/09/2025 06:57 AM (9 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 323045 [Jinher OA حتى 1.2 GetTreeDate.aspx معرف حقن SQL] |
|---|
| النقاط | 18 |
|---|