| शीर्षक | Jinhe OA V1.0 SQL Injection |
|---|
| विवरण | A severe SQL injection vulnerability was discovered in the UserSel.aspx component during testing of Jinhe OA. The "DeptIDList" parameter is vulnerable to SQL injection attacks, enabling unauthorized attackers to execute arbitrary SQL queries on the backend database, which could potentially lead to remote code execution under certain conditions.
|
|---|
| स्रोत | ⚠️ https://github.com/zzlln/cvecve/issues/1 |
|---|
| उपयोगकर्ता | ZLNZLN (UID 97174) |
|---|
| सबमिशन | 08/04/2026 08:59 AM (2 महीनों पहले) |
|---|
| संयम | 02/05/2026 10:07 AM (24 days later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 360818 [Jinher OA 1.0 UserSel.aspx DeptIDList SQL इंजेक्शन] |
|---|
| अंक | 19 |
|---|