提出 #658253: Jinher OA V2.0 XML External Entity Reference情報

タイトルJinher OA V2.0 XML External Entity Reference
説明An XXE injection vulnerability was found in the " /c6/Jhsoft.Web.module/ToolBar/ManageWord.aspx/?text=GetUrl&style=1 " endpoint of Jinhe OA system. The application processes XML input without proper validation or disabling of external entity references. This allows attackers to include malicious external entities in XML documents processed by the server.
ソース⚠️ https://github.com/frwfxc123/CVE/issues/1
ユーザー
 ffff1123 (UID 90453)
送信2025年09月18日 17:21 (10 月 ago)
モデレーション2025年09月26日 10:50 (8 days later)
ステータス承諾済み
VulDBエントリ325982 [Jinher OA 2.0 ?text=GetUrl&style=1 XML External Entity]
ポイント18

Might our Artificial Intelligence support you?

Check our Alexa App!