| Titel | Jinhe OA V1.0 SQL Injection |
|---|
| Beschreibung | - A critical SQL injection vulnerability was discovered in Jinhe OA's GetTreeDate.aspx component. The "id" parameter is vulnerable to SQL injection, allowing unauthenticated attackers to execute arbitrary SQL queries on the backend database. |
|---|
| Quelle | ⚠️ https://github.com/1276486/CVE/issues/1 |
|---|
| Benutzer | Zre0x1c (UID 89206) |
|---|
| Einreichung | 19.08.2025 16:26 (vor 11 Monaten) |
|---|
| Moderieren | 29.08.2025 10:16 (10 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 321876 [Jinher OA 1.0 GetTreeDate.aspx ID SQL Injection] |
|---|
| Punkte | 17 |
|---|