Submit #658253: Jinher OA V2.0 XML External Entity Referenceinfo

TitelJinher OA V2.0 XML External Entity Reference
BeschreibungAn XXE injection vulnerability was found in the " /c6/Jhsoft.Web.module/ToolBar/ManageWord.aspx/?text=GetUrl&style=1 " endpoint of Jinhe OA system. The application processes XML input without proper validation or disabling of external entity references. This allows attackers to include malicious external entities in XML documents processed by the server.
Quelle⚠️ https://github.com/frwfxc123/CVE/issues/1
Benutzer
 ffff1123 (UID 90453)
Einreichung18.09.2025 17:21 (vor 10 Monaten)
Moderieren26.09.2025 10:50 (8 days later)
StatusAkzeptiert
VulDB Eintrag325982 [Jinher OA 2.0 ?text=GetUrl&style=1 XML External Entity]
Punkte18

Might our Artificial Intelligence support you?

Check our Alexa App!