| Kura | jinhe OA V1.0 XML External Entity Reference |
|---|
| Gaskiya | During security testing of Jinhe OA system, a critical XXE injection vulnerability was discovered in the DelTemp.aspx endpoint. This vulnerability allows unauthenticated attackers to send specially crafted XML documents containing external entity references. The server processes these entities, enabling data exfiltration through out-of-band techniques. |
|---|
| Manga | ⚠️ https://github.com/BigMancer/Jinhe-OA-XXE-Vulnerability |
|---|
| Màdùmga | BluesCat (UID 87333) |
|---|
| Furta | 07/08/2025 08:12 (7 Wurɗi 전) |
|---|
| Gargajiya | 07/12/2025 08:51 (4 days later) |
|---|
| Halitta | Shingilam |
|---|
| VulDB gite | 316220 [Jinher OA 1.0 DelTemp.aspx XML External Entity] |
|---|
| Nganji | 18 |
|---|