Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

215 matches found

RedhatCVE
RedhatCVEadded 2026/06/09 2:58 a.m.10 views

CVE-2026-11469

A flaw has been found in jishenghua jshERP up to 3.6. Impacted is the function insertPlatformConfig of the file jshERP-boot/src/main/java/com/jsh/erp/service/PlatformConfigService.java of the component platformConfig Add Endpoint. Executing a manipulation of the argument platformValue can lead to...

5.8CVSS5AI score0.00232EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/06/09 2:58 a.m.11 views

CVE-2026-11467

A security vulnerability has been detected in jishenghua jshERP up to 3.6. This vulnerability affects the function addAccountHeadAndDetail of the file jshERP-boot/src/main/java/com/jsh/erp/service/AccountHeadService.java of the component addAccountHeadAndDetail Endpoint. Such manipulation of the...

5.5CVSS5.5AI score0.00323EPSS
Exploits0References1
EUVD
EUVDadded 2026/06/08 12:30 a.m.9 views

EUVD-2026-34998

A security vulnerability has been detected in jishenghua jshERP up to 3.6. This vulnerability affects the function addAccountHeadAndDetail of the file jshERP-boot/src/main/java/com/jsh/erp/service/AccountHeadService.java of the component addAccountHeadAndDetail Endpoint. Such manipulation of the...

5.5CVSS5.2AI score0.00323EPSS
Exploits0References7
EUVD
EUVDadded 2026/06/08 12:30 a.m.11 views

EUVD-2026-35000

A flaw has been found in jishenghua jshERP up to 3.6. Impacted is the function insertPlatformConfig of the file jshERP-boot/src/main/java/com/jsh/erp/service/PlatformConfigService.java of the component platformConfig Add Endpoint. Executing a manipulation of the argument platformValue can lead to...

5.8CVSS5AI score0.00232EPSS
Exploits0References7
NVD
NVDadded 2026/06/08 12:16 a.m.12 views

CVE-2026-11469

A flaw has been found in jishenghua jshERP up to 3.6. Impacted is the function insertPlatformConfig of the file jshERP-boot/src/main/java/com/jsh/erp/service/PlatformConfigService.java of the component platformConfig Add Endpoint. Executing a manipulation of the argument platformValue can lead to...

5.8CVSS0.00232EPSS
Exploits0References6
NVD
NVDadded 2026/06/08 12:16 a.m.11 views

CVE-2026-11467

A security vulnerability has been detected in jishenghua jshERP up to 3.6. This vulnerability affects the function addAccountHeadAndDetail of the file jshERP-boot/src/main/java/com/jsh/erp/service/AccountHeadService.java of the component addAccountHeadAndDetail Endpoint. Such manipulation of the...

5.5CVSS0.00323EPSS
Exploits0References6
CNNVD
CNNVDadded 2026/06/08 12:0 a.m.7 views

jshERP(华夏ERP) 代码问题漏洞

jshERP Huaxia ERP is a domestic ERP system developed by Jishan Hua. Versions of jshERP 3.6 and earlier contained code vulnerabilities. These vulnerabilities stemmed from improper handling of the parameter platformValue in the platformConfig Add endpoint, specifically in the insertPlatformConfig...

5.8CVSS5AI score0.00232EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/06/07 11:45 p.m.5 views

CVE-2026-11469 jishenghua jshERP platformConfig Add Endpoint PlatformConfigService.java insertPlatformConfig server-side request forgery

A flaw has been found in jishenghua jshERP up to 3.6. Impacted is the function insertPlatformConfig of the file jshERP-boot/src/main/java/com/jsh/erp/service/PlatformConfigService.java of the component platformConfig Add Endpoint. Executing a manipulation of the argument platformValue can lead to...

5.8CVSS5.1AI score0.00232EPSS
Exploits0References6
ATTACKERKB
ATTACKERKBadded 2026/06/07 11:45 p.m.6 views

CVE-2026-11469

A flaw has been found in jishenghua jshERP up to 3.6. Impacted is the function insertPlatformConfig of the file jshERP-boot/src/main/java/com/jsh/erp/service/PlatformConfigService.java of the component platformConfig Add Endpoint. Executing a manipulation of the argument platformValue can lead to...

5.8CVSS5AI score0.00232EPSS
Exploits0References6Affected Software1
CVE
CVEadded 2026/06/07 11:45 p.m.21 views

CVE-2026-11469

CVE-2026-11469 affects jishenghua jshERP up to version 3.6. The vulnerability is in the function insertPlatformConfig of PlatformConfigService.java (PlatformConfig Add Endpoint). A manipulation of the argument platformValue can cause server-side request forgery (SSRF). The attack can be performed...

5.8CVSS5.1AI score0.00232EPSS
Exploits0References6
Vulnrichment
Vulnrichmentadded 2026/06/07 11:15 p.m.7 views

CVE-2026-11467 jishenghua jshERP addAccountHeadAndDetail Endpoint AccountHeadService.java path traversal

A security vulnerability has been detected in jishenghua jshERP up to 3.6. This vulnerability affects the function addAccountHeadAndDetail of the file jshERP-boot/src/main/java/com/jsh/erp/service/AccountHeadService.java of the component addAccountHeadAndDetail Endpoint. Such manipulation of the...

5.5CVSS5.6AI score0.00323EPSS
Exploits0References6
CVE
CVEadded 2026/06/07 11:15 p.m.19 views

CVE-2026-11467

CVE-2026-11467 affects jishenghua jshERP up to 3.6. The vulnerability is in the function addAccountHeadAndDetail of AccountHeadService.java (path: jshERP-boot/src/main/java/com/jsh/erp/service/AccountHeadService.java). The root cause is manipulation of the argument fileName, enabling path travers...

5.5CVSS5.6AI score0.00323EPSS
Exploits0References6
ATTACKERKB
ATTACKERKBadded 2026/06/07 11:15 p.m.6 views

CVE-2026-11467

A security vulnerability has been detected in jishenghua jshERP up to 3.6. This vulnerability affects the function addAccountHeadAndDetail of the file jshERP-boot/src/main/java/com/jsh/erp/service/AccountHeadService.java of the component addAccountHeadAndDetail Endpoint. Such manipulation of the...

5.5CVSS5.5AI score0.00323EPSS
Exploits0References6Affected Software1
Cvelist
Cvelistadded 2026/06/07 11:15 p.m.38 views

CVE-2026-11467 jishenghua jshERP addAccountHeadAndDetail Endpoint AccountHeadService.java path traversal

A security vulnerability has been detected in jishenghua jshERP up to 3.6. This vulnerability affects the function addAccountHeadAndDetail of the file jshERP-boot/src/main/java/com/jsh/erp/service/AccountHeadService.java of the component addAccountHeadAndDetail Endpoint. Such manipulation of the...

5.5CVSS0.00323EPSS
Exploits0References6
Positive Technologies
Positive Technologiesadded 2026/06/07 12:0 a.m.14 views

PT-2026-47200

A flaw has been found in jishenghua jshERP up to 3.6. Impacted is the function insertPlatformConfig of the file jshERP-boot/src/main/java/com/jsh/erp/service/PlatformConfigService.java of the component platformConfig Add Endpoint. Executing a manipulation of the argument platformValue can lead to...

5.8CVSS5AI score0.00232EPSS
Exploits0References7
Positive Technologies
Positive Technologiesadded 2026/06/07 12:0 a.m.12 views

PT-2026-47198

A security vulnerability has been detected in jishenghua jshERP up to 3.6. This vulnerability affects the function addAccountHeadAndDetail of the file jshERP-boot/src/main/java/com/jsh/erp/service/AccountHeadService.java of the component addAccountHeadAndDetail Endpoint. Such manipulation of the...

5.5CVSS5.5AI score0.00323EPSS
Exploits0References7
RedhatCVE
RedhatCVEadded 2026/06/05 7:43 p.m.8 views

CVE-2026-8320

A security vulnerability has been detected in jishenghua jshERP up to 3.6. This affects the function getUserByWeixinCode of the file jshERP-boot/src/main/java/com/jsh/erp/service/UserService.java of the component updatePlatformConfigByKey Endpoint. Such manipulation of the argument weixinUrl lead...

5.8CVSS5.2AI score0.00223EPSS
Exploits0References1
EUVD
EUVDadded 2026/05/11 9:31 p.m.6 views

EUVD-2026-29211

A security vulnerability has been detected in jishenghua jshERP up to 3.6. This affects the function getUserByWeixinCode of the file jshERP-boot/src/main/java/com/jsh/erp/service/UserService.java of the component updatePlatformConfigByKey Endpoint. Such manipulation of the argument weixinUrl lead...

5.8CVSS5.5AI score0.00223EPSS
Exploits0References6
NVD
NVDadded 2026/05/11 8:25 p.m.16 views

CVE-2026-8320

A security vulnerability has been detected in jishenghua jshERP up to 3.6. This affects the function getUserByWeixinCode of the file jshERP-boot/src/main/java/com/jsh/erp/service/UserService.java of the component updatePlatformConfigByKey Endpoint. Such manipulation of the argument weixinUrl lead...

5.8CVSS0.00223EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/05/11 7:30 p.m.4 views

CVE-2026-8320

A security vulnerability has been detected in jishenghua jshERP up to 3.6. This affects the function getUserByWeixinCode of the file jshERP-boot/src/main/java/com/jsh/erp/service/UserService.java of the component updatePlatformConfigByKey Endpoint. Such manipulation of the argument weixinUrl lead...

5.8CVSS5.5AI score0.00223EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder