Submeter #658253: Jinher OA V2.0 XML External Entity Referenceinformação

TítuloJinher OA V2.0 XML External Entity Reference
DescriçãoAn XXE injection vulnerability was found in the " /c6/Jhsoft.Web.module/ToolBar/ManageWord.aspx/?text=GetUrl&style=1 " endpoint of Jinhe OA system. The application processes XML input without proper validation or disabling of external entity references. This allows attackers to include malicious external entities in XML documents processed by the server.
Fonte⚠️ https://github.com/frwfxc123/CVE/issues/1
Utilizador
 ffff1123 (UID 90453)
Submissão18/09/2025 17h21 (há 10 meses)
Moderação26/09/2025 10h50 (8 days later)
EstadoAceite
Entrada VulDB325982 [Jinher OA 2.0 ?text=GetUrl&style=1 XML External Entity]
Pontos18

Want to stay up to date on a daily basis?

Enable the mail alert feature now!