9 matches found
VulnCheck KEV: CVE-2025-10090
A flaw has been found in Jinher OA up to 1.2. The impacted element is an unknown function of the file /C6/Jhsoft.Web.departments/GetTreeDate.aspx. Executing manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be us...
CVE-2025-10090
A flaw has been found in Jinher OA up to 1.2. The impacted element is an unknown function of the file /C6/Jhsoft.Web.departments/GetTreeDate.aspx. Executing manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be us...
CVE-2025-10090
A flaw has been found in Jinher OA up to 1.2. The impacted element is an unknown function of the file /C6/Jhsoft.Web.departments/GetTreeDate.aspx. Executing manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be us...
CVE-2025-10090 Jinher OA GetTreeDate.aspx sql injection
A flaw has been found in Jinher OA up to 1.2. The impacted element is an unknown function of the file /C6/Jhsoft.Web.departments/GetTreeDate.aspx. Executing manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be us...
CVE-2025-10090 Jinher OA GetTreeDate.aspx sql injection
A flaw has been found in Jinher OA up to 1.2. The impacted element is an unknown function of the file /C6/Jhsoft.Web.departments/GetTreeDate.aspx. Executing manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be us...
Jinher OA SQL注入漏洞
Jinher OA is a collaboration management software from China Jinher Jinher. A SQL injection vulnerability exists in Jinher OA 1.2 and earlier versions, which originates from improper handling of parameters in the /C6/Jhsoft.Web.departments/GetTreeDate.aspx file, which can lead to SQL injection...
PT-2025-36451
Name of the Vulnerable Software and Affected Versions: Jinher OA versions prior to 1.3 Description: A flaw has been found in Jinher OA up to version 1.2. The issue involves SQL injection in an unknown function within the file /C6/Jhsoft.Web.departments/GetTreeDate.aspx. Manipulation of the ID...
CVE-2025-9669
The CVE-2025-9669 entry concerns Jinher OA 1.0. The vulnerability arises in the GetTreeDate.aspx file where manipulation of the ID parameter enables SQL injection. Remote exploitation is possible and the exploit has been publicly disclosed. Connected documents corroborate the presence of a SQL in...
Jinher OA 安全漏洞
Jinher OA is a collaborative management software from Jinher, China. A security vulnerability exists in Jinher OA version 1.0, which originates from improper manipulation of the parameter ID in the file GetTreeDate.aspx, which may lead to an SQL injection attack...