ГлавнаяУязвимости → CVE-2025-11341
7.3высокая

CVE-2025-11341

Описание

A security flaw has been discovered in Jinher OA up to 2.0. This affects an unknown function of the file /c6/Jhsoft.Web.module/eformaspx/WebDesign.aspx/?type=SystemUserInfo&style=1. Performing manipulation results in xml external entity reference. Remote exploitation of the attack is possible. The exploit has been released to the public and may be exploited.

Затрагиваемое ПО
Jinher Jinher oa
CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Источники
https://github.com/rookie1006/CVE/issues/2https://vuldb.com/?ctiid.327226https://vuldb.com/?id.327226https://vuldb.com/?submit.664613