CVE-2025-8806
CVE-2025-8806 affects the zhilink ADP Application Developer Platform (version 1.0.0) from Zhilink. The vulnerability allows SQL injection through the parameter extId in the endpoint /adpweb/a/sys/office/treeData. The issue is exploitable remotely and, according to sources, the exploit has been di...