Enviar #658253: Jinher OA V2.0 XML External Entity Referenceinformación

TítuloJinher OA V2.0 XML External Entity Reference
DescripciónAn XXE injection vulnerability was found in the " /c6/Jhsoft.Web.module/ToolBar/ManageWord.aspx/?text=GetUrl&style=1 " endpoint of Jinhe OA system. The application processes XML input without proper validation or disabling of external entity references. This allows attackers to include malicious external entities in XML documents processed by the server.
Fuente⚠️ https://github.com/frwfxc123/CVE/issues/1
Usuario
 ffff1123 (UID 90453)
Sumisión2025-09-18 17:21 (hace 10 meses)
Moderación2025-09-26 10:50 (8 days later)
EstadoAceptado
Entrada de VulDB325982 [Jinher OA 2.0 ?text=GetUrl&style=1 XML External Entity]
Puntos18

Interested in the pricing of exploits?

See the underground prices here!