Submit #644635: Jinher OA V1.2 SQL Injectioninfo

Title	Jinher OA V1.2 SQL Injection
Description	A critical SQL injection vulnerability was discovered in Jinhe OA's /C6/Jhsoft.Web.departments/GetTreeDate.aspx component. The "id" parameter is vulnerable to SQL injection, allowing unauthenticated attackers to execute arbitrary SQL queries on the backend database.
Source	⚠️ https://github.com/Cstarplus/CVE/issues/1
User	abc_123456 (UID 89341)
Submission	08/30/2025 15:11 (9 months ago)
Moderation	09/08/2025 06:57 (9 days later)
Status	Accepted
VulDB entry	323045 [Jinher OA up to 1.2 GetTreeDate.aspx ID sql injection]
Points	18

Might our Artificial Intelligence support you?

Check our Alexa App!